• DocumentCode
    3210328
  • Title

    The realization of DNS anomaly detection based on combination of two methods of similarity and entropy

  • Author

    Wang, Zhenqi ; Zhang, Miaojie

  • Author_Institution
    North China Electr. Power Univ., Baoding, China
  • Volume
    2
  • fYear
    2010
  • fDate
    13-14 Sept. 2010
  • Firstpage
    113
  • Lastpage
    116
  • Abstract
    The DNS server will often be attacked through various means, which will lead to our DNS server´s low efficiency or even make the DNS server not to provide service of DNS analysis normally and correctly. DNS detection is just to detect whether these accusations happen or not in time. There are many methods for anomaly detection of DNS server, for example, the method based on similarity, the method based on entropy and so on. We will research the combination of the two methods and then realize it. This will improve the monitoring effeciency.
  • Keywords
    entropy; security of data; DNS anomaly detection; DNS server; domain name system; entropy; similarity method; Computer crime; Entropy; Feature extraction; Filtering; Monitoring; Network interfaces; Servers;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Computational Intelligence and Natural Computing Proceedings (CINC), 2010 Second International Conference on
  • Conference_Location
    Wuhan
  • Print_ISBN
    978-1-4244-7705-0
  • Type

    conf

  • DOI
    10.1109/CINC.2010.5643774
  • Filename
    5643774
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3210328