Pub Date : 1900-01-01DOI: 10.1109/SSIC.2015.7245681
Lian Zheng, Xiao-Lin Xu, Jia Li, Lu Zhang, Xuan-Chen Pan, Zhiqiang Ma, Li-Hong Zhang
Traditional Anti-virus technology is primarily based on static analysis and dynamic monitoring. However, both technologies are heavily depended on application files, which increase the risk of being attacked, wasting of time and network bandwidth. In this study, we propose a new graph-based method, through which we can preliminary detect malicious URL without application file. First, the relationship between URLs can be found through the relationship between people and URLs. Then the association rules can be mined with confidence of each frequent URLs. Secondly, the networks of URLs was built through the association rules. When the networks of URLs were finished, we clustered the date with modularity to detect communities and every community represents different types of URLs. We suppose that a URL has association with one community, then the URL is malicious probably. In our experiments, we successfully captured 82 % of malicious samples, getting a higher capture than using traditional methods.
{"title":"Malicious URL prediction based on community detection","authors":"Lian Zheng, Xiao-Lin Xu, Jia Li, Lu Zhang, Xuan-Chen Pan, Zhiqiang Ma, Li-Hong Zhang","doi":"10.1109/SSIC.2015.7245681","DOIUrl":"https://doi.org/10.1109/SSIC.2015.7245681","url":null,"abstract":"Traditional Anti-virus technology is primarily based on static analysis and dynamic monitoring. However, both technologies are heavily depended on application files, which increase the risk of being attacked, wasting of time and network bandwidth. In this study, we propose a new graph-based method, through which we can preliminary detect malicious URL without application file. First, the relationship between URLs can be found through the relationship between people and URLs. Then the association rules can be mined with confidence of each frequent URLs. Secondly, the networks of URLs was built through the association rules. When the networks of URLs were finished, we clustered the date with modularity to detect communities and every community represents different types of URLs. We suppose that a URL has association with one community, then the URL is malicious probably. In our experiments, we successfully captured 82 % of malicious samples, getting a higher capture than using traditional methods.","PeriodicalId":404176,"journal":{"name":"International Conferences on Security of Smart Cities, Industrial Control System and Communications","volume":"7 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1900-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"124074232","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
Pub Date : 1900-01-01DOI: 10.1109/SSIC.2016.7571809
Yongkai Zhou, Hang Yuan, Lijun Zu, Guobao Liu, Ge Li
For the networking of financial data center, traditional practices tend to directly purchase vendor commodity. However, in the era of software defined network (SDN), both vendor and open source SDN solution will be adopted for the consideration of long term evolution and to prevent vendor-lock. Therefore, how to uniformly manage multiple SDN controllers becomes a key problem to be solved before real deployment. In this paper, it is proposed to deploy multiple SDN solutions into different network zones, and use OpenStack as an orchestrator. Inter-region networking and implementation are addressed and compared in detail. It is shown that the proposed method only adjusts the deployment mode, while there is few modifications to the OpenStack implementation. Therefore, it is practical for the current financial cloud deployment.
{"title":"Multiple SDN controller orchestration for financial cloud","authors":"Yongkai Zhou, Hang Yuan, Lijun Zu, Guobao Liu, Ge Li","doi":"10.1109/SSIC.2016.7571809","DOIUrl":"https://doi.org/10.1109/SSIC.2016.7571809","url":null,"abstract":"For the networking of financial data center, traditional practices tend to directly purchase vendor commodity. However, in the era of software defined network (SDN), both vendor and open source SDN solution will be adopted for the consideration of long term evolution and to prevent vendor-lock. Therefore, how to uniformly manage multiple SDN controllers becomes a key problem to be solved before real deployment. In this paper, it is proposed to deploy multiple SDN solutions into different network zones, and use OpenStack as an orchestrator. Inter-region networking and implementation are addressed and compared in detail. It is shown that the proposed method only adjusts the deployment mode, while there is few modifications to the OpenStack implementation. Therefore, it is practical for the current financial cloud deployment.","PeriodicalId":404176,"journal":{"name":"International Conferences on Security of Smart Cities, Industrial Control System and Communications","volume":"75 1","pages":"0"},"PeriodicalIF":0.0,"publicationDate":"1900-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":null,"resultStr":null,"platform":"Semanticscholar","paperid":"114874342","PeriodicalName":null,"FirstCategoryId":null,"ListUrlMain":null,"RegionNum":0,"RegionCategory":"","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":"","EPubDate":null,"PubModel":null,"JCR":null,"JCRName":null,"Score":null,"Total":0}
京公网安备 11010802042870号
京ICP备2023020795号-1
扫码关注我们
求助内容:
应助结果提醒方式: