Name
Abstract | ||
|---|---|---|
Conventional network security solutions are performed on network-layer packets using statistical measures. These types of traffic analysis may not catch stealthy attacks carried out by today's malware. We aim to develop a host-based security tool that identifies suspicious outbound network connections through analyzing the user's surfing activities. Specifically, our solution for Web applications predicts user's network connections by analyzing Web content; unpredicted traffic is further investigated with the user's help. We describe our method and implementation as well as the experimental results in evaluating its efficiency and effectiveness. We describe how our studies can be applied to detecting bot infection. In order to assess the workload of our host-based traffic-analysis tool, we also perform a large-scale characterization study on 500 university-users' wireless network traces for 4-month period. We study both the statistical and temporal patterns of individuals' web usage behaviors from collected wireless network traces. Users are classified into different profiles based on their web usage patterns. Our results show that users have regularities in their Web activities and the expected workload of our traffic-analysis solution is low. |
Year | DOI | Venue |
|---|---|---|
2009 | 10.1007/978-3-642-11145-7_23 | ICICS |
Keywords | Field | DocType |
outbound malware traffic,network connection,host-based traffic-analysis tool,wireless network trace,user-assisted host-based detection,conventional network security solution,web content,host-based security tool,web activity,expected workload,web application,suspicious outbound network connection,wireless network,col,network security | Wireless network,Traffic analysis,Computer science,Network packet,Network security,Computer network,Web application,Malware,Network traffic control,Web content | Conference |
Volume | ISSN | ISBN |
5927 | 0302-9743 | 3-642-11144-0 |
Citations | PageRank | References |
11 | 0.67 | 21 |
Authors | ||
5 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Huijun Xiong | 1 | 96 | 6.60 |
| Prateek Malhotra | 2 | 11 | 1.01 |
| Deian Stefan | 3 | 418 | 29.21 |
| Chehai Wu | 4 | 20 | 1.31 |
| Danfeng Yao | 5 | 965 | 74.85 |