Paper published in a book (Scientific congresses, symposiums and conference proceedings)
Semantic based DNS Forensics
MARCHAL, Samuel; FRANÇOIS, Jérôme; STATE, Radu et al.
2012In Proceedings of the IEEE International Workshop on Information Forensics and Security
Peer reviewed
 

Files


Full Text
wifs12.pdf
Author postprint (746.4 kB)
Download
Annexes
presentation.pdf
(2.22 MB)
Download

All documents in ORBilu are protected by a user license.

Send to



Details



Abstract :
[en] In network level forensics, Domain Name Service (DNS) is a rich source of information. This paper describes a new approach to mine DNS data for forensic purposes. We propose a new technique that leverages semantic and natural language processing tools in order to analyze large volumes of DNS data. The main research novelty consists in detecting malicious and dangerous domain names by evaluating the semantic similarity with already known names. This process can provide valuable information for reconstructing network and user activities. We show the efficiency of the method on experimental real datasets gathered from a national passive DNS system.
Research center :
Interdisciplinary Centre for Security, Reliability and Trust
Disciplines :
Computer science
Identifiers :
UNILU:UL-CONFERENCE-2012-431
Author, co-author :
MARCHAL, Samuel ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
FRANÇOIS, Jérôme  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
STATE, Radu  ;  University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)
ENGEL, Thomas ;  University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)
Language :
English
Title :
Semantic based DNS Forensics
Publication date :
December 2012
Event name :
WIFS’12
Event organizer :
University of Vigo, Spain
Event place :
Tenerife, Spain
Event date :
2-5 December
Audience :
International
Main work title :
Proceedings of the IEEE International Workshop on Information Forensics and Security
Publisher :
IEEE
ISBN/EAN :
978-1-4673-2285-0
Pages :
91 - 96
Peer reviewed :
Peer reviewed
Available on ORBilu :
since 13 December 2013

Statistics


Number of views
143 (4 by Unilu)
Number of downloads
396 (1 by Unilu)

Scopus citations®
 
4
Scopus citations®
without self-citations
2
OpenAlex citations
 
5
WoS citations
 
4

Bibliography


Similar publications



Contact ORBilu