Using Auxiliary Inputs in Deep Learning Models for Detecting DGA-based Domain Names

机译：在深学习模型中使用辅助输入来检测基于DGA的域名

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Command-and-Control (C&C) servers use Domain Generation Algorithms (DGAs) to communicate with bots for uploading malware and coordinating attacks. Manual detection methods and sinkholing fail to work against these algorithms, which can generate thousands of domain names within a short period. This creates a need for an automated and intelligent system that can detect such malicious domains. LSTM (Long Short Term Memory) is one of the most popularly used deep learning architectures for DGA detection, but it performs poorly against Dictionary Domain Generation Algorithms. This work explores the application of various machine learning techniques to this problem, including specialized approaches such as Auxiliary Loss Optimization for Hypothesis Augmentation (ALOHA), with a particular focus on their performance against Dictionary Domain Generation Algorithms. The ALOHA-LSTM model improves the accuracy of Dictionary Domain Generation Algorithms compared to the state of the art LSTM model. Improvements were observed in the case of word-based DGAs as well. Addressing this issue is of paramount importance, as they are used extensively in carrying out Distributed Denial-of-Service (DDoS) attacks. DDoS and its variants comprise one of the most significant and damaging cyber-attacks that have been carried out in the past.

机译：命令和控制（C＆C）服务器使用域生成算法（DGA）与用于上传恶意软件和协调攻击的机器人通信。手动检测方法和insholing无法对这些算法工作，这可以在短时间内生成数千个域名。这需要一种可以检测此类恶意域的自动和智能系统。 LSTM（长期内存）是DGA检测最普遍使用的深度学习架构之一，但它对字典域生成算法表现不佳。这项工作探讨了各种机器学习技术对该问题的应用，包括特殊方法，例如假设增强（Aloha）的辅助损耗优化，特别侧重于其对字典域生成算法的性能。与现有技术LSTM模型相比，Aloha-LSTM模型提高了字典域生成算法的准确性。在基于词的DGAS的情况下，观察到改进。解决此问题的重要性是至关重要的，因为它们是广泛用于执行分布式拒绝服务（DDOS）攻击。 DDOS及其变体包括过去已经进行的最重要和最有害的网络攻击之一。

著录项

来源
《International Conference on Information Networking》|2021年|391-396|共6页
会议地点
作者
Indraneel Ghosh; Subham Kumar; Ashutosh Bhatia; Deepak Kumar Vishwakarma;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Deep learning; Machine learning algorithms; Dictionaries; Servers; Security; Long short term memory; Optimization;

机译：深入学习;机器学习算法;词典;服务器;安全;长期内存;优化;

相似文献

外文文献
中文文献
专利

1. Classification for DGA-Based Malicious Domain Names with Deep Learning Architectures [J] . Feng Zeng, Shuo Chang, Xiaochuan Wan International Journal of Intelligent Information Systems . 2017,第6期

机译：使用深度学习架构对基于DGA的恶意域名进行分类
2. Detecting malicious domain names using deep learning approaches at scale [J] . Vinayakumar R., Soman K. P., Poornachandran Prabaharan Journal of intelligent & fuzzy systems: Applications in Engineering and Technology . 2018,第3期

机译：在规模上使用深度学习方法检测恶意域名
3. Detecting glaucoma based on spectral domain optical coherence tomography imaging of peripapillary retinal nerve fiber layer: a comparison study between hand-crafted features and deep learning model [J] . Zheng Ce, Xie Xiaolin, Huang Longtao, Graefe's archive for clinical and experimental ophthalmology: Albrecht von Graefes Archiv fur klinische und experimentelle Opthalmologie . 2020,第3期

机译：基于围网视网膜神经纤维层的光谱域光学相干断层扫描成像检测青光眼：手工制作特征与深层学习模型的比较研究
4. A Semi-Supervised Learning Scheme to Detect Unknown DGA Domain Names Based on Graph Analysis [C] . Fan Yan, Jia Liu, Liang Gu, IEEE International Conference on Trust, Security and Privacy in Computing and Communications . 2020

机译：基于图形分析检测未知DGA域名的半监督学习方案
5. A Deep Learning Model to Predict Thunderstorms within 400 km2 South Texas Domains [D] . Kamangir, Hamid . 2019

机译：深度学习模式，以预测400 km2南德克萨斯州内的雷暴
6. A hybrid deep learning framework for bacterial named entity recognition with domain features [O] . Xusheng Li, Chengcheng Fu, Ran Zhong, 2019

机译：具有领域特征的细菌命名实体识别的混合深度学习框架
7. Classification for DGA-Based Malicious Domain Names with Deep Learning Architectures [O] . Feng Zeng 2017

机译：基于DGA的恶意域名分类，具有深度学习架构

Using Auxiliary Inputs in Deep Learning Models for Detecting DGA-based Domain Names

摘要

著录项

相似文献

相关主题

期刊订阅