publication . Article . 2020

Text analysis of DNS queries for data exfiltration protection of computer networks

Ya. V. Bubnov; N. N. Ivanov;
Open Access
  • Published: 30 Sep 2020 Journal: Informatics, volume 17, pages 78-86 (issn: 1816-0301, eissn: 2617-6963, Copyright policy)
  • Publisher: United Institute of Informatics Problems of the National Academy of Sciences of Belarus
Abstract
<jats:p>The paper proposes effective method of computer network protection from data exfiltration by the system of domain names. Data exfiltration by Domain Name System (DNS) is an approach to conceal the transfer of confidential data to remote adversary using data encapsulation into the requesting domain name. The DNS requests that transfer stolen information from a host infected by malicious software to an external host controlled by a malefactor are considered. The paper proposes a method of detecting such DNS requests based on text classification of domain names by convolutional neural network. The efficiency of the method is based on assumption that domain ...
Persistent Identifiers
Subjects
free text keywords: domain name system, computer network security, data exfiltration, text classification, convolutional neural network, Computer network, business.industry, business, Text mining, Computer science, Extraction (military), lcsh:Electronic computers. Computer science, lcsh:QA75.5-76.95
Any information missing or wrong?Report an Issue