RPZ-Based Suspicious Direct Outbound DNS Traffic Detection Mechanism With Adaptive Policy Updates

RPZ-Based Suspicious Direct Outbound DNS Traffic Detection Mechanism With Adaptive Policy Updates

Domain Name System (DNS) based C&C communication has gotten much attention over the past decade due to the increase of malware using DNS protocol. A legitimate usage of DNS protocol in domain name resolution requires Name Server (NS) records and the corresponding glue A records achievemen...

ver descrição completa

Detalhes bibliográficos
Principais autores: Hikaru Ichise, Yong Jin, Katsuyoshi Iida
Formato: Artigo
Idioma:English
Publicado em: IEEE 2025-01-01
coleção:IEEE Access
Assuntos:
DNS
response policy zone
RPZ
malware
malware-infected computer
C&C
Acesso em linha:https://ieeexplore.ieee.org/document/10887223/

Internet

https://ieeexplore.ieee.org/document/10887223/

Registros relacionados