DocumentCode :
3210328
Title :
The realization of DNS anomaly detection based on combination of two methods of similarity and entropy
Author :
Wang, Zhenqi ; Zhang, Miaojie
Author_Institution :
North China Electr. Power Univ., Baoding, China
Volume :
2
fYear :
2010
fDate :
13-14 Sept. 2010
Firstpage :
113
Lastpage :
116
Abstract :
The DNS server will often be attacked through various means, which will lead to our DNS server´s low efficiency or even make the DNS server not to provide service of DNS analysis normally and correctly. DNS detection is just to detect whether these accusations happen or not in time. There are many methods for anomaly detection of DNS server, for example, the method based on similarity, the method based on entropy and so on. We will research the combination of the two methods and then realize it. This will improve the monitoring effeciency.
Keywords :
entropy; security of data; DNS anomaly detection; DNS server; domain name system; entropy; similarity method; Computer crime; Entropy; Feature extraction; Filtering; Monitoring; Network interfaces; Servers;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Computational Intelligence and Natural Computing Proceedings (CINC), 2010 Second International Conference on
Conference_Location :
Wuhan
Print_ISBN :
978-1-4244-7705-0
Type :
conf
DOI :
10.1109/CINC.2010.5643774
Filename :
5643774
Link To Document :
https://search.ricest.ac.ir/dl/search/defaultta.aspx?DTC=49&DC=3210328
بازگشت