DomainChroma: Providing Optimal Countermeasures against Malicious Domain Names

Daiki Chiba, Mitsuaki Akiyama, Takeshi Yagi, Takeshi Yada, Tatsuya Mori, Shigeki Goto

    Research output: Chapter in Book/Report/Conference proceedingConference contribution

    2 Citations (Scopus)

    Abstract

    Domain names and domain name system (DNS) have been used and abused for over 30 years since the 1980s. Although legitimate Internet users rely on domain names as their indispensable infrastructures for using the Internet, attackers use or abuse them as reliable, instantaneous, and distributed attack infrastructure. However, there is a lack of complete understanding of such domain name abuses and the methods for coping with them. In this paper, we design and implement a unified and objective analysis pipeline combining the existing defense solutions to realize practical and optimal defenses against today's malicious domain names. The basic concept underlying our novel analytical approach is malicious domain names' chromatography. Our new analysis pipeline can distinguish among mixtures of malicious domain names for websites. On the basis of this concept, we do not create a hodgepodge of existing solutions but design separation of abused domain names and offer defense information by considering the characteristics of malicious domain names as well as the possible defense solutions and points of defense. Finally, we evaluate our analysis pipeline and output defense information using a large and real dataset to show the effectiveness and validity of our proposed approach.

    Original languageEnglish
    Title of host publicationProceedings - 2017 IEEE 41st Annual Computer Software and Applications Conference, COMPSAC 2017
    PublisherIEEE Computer Society
    Pages643-648
    Number of pages6
    Volume1
    ISBN (Electronic)9781538603673
    DOIs
    Publication statusPublished - 2017 Sep 7
    Event41st IEEE Annual Computer Software and Applications Conference, COMPSAC 2017 - Torino, Italy
    Duration: 2017 Jul 42017 Jul 8

    Other

    Other41st IEEE Annual Computer Software and Applications Conference, COMPSAC 2017
    CountryItaly
    CityTorino
    Period17/7/417/7/8

    Keywords

    • blacklists
    • countermeasures
    • DNS
    • domain name

    ASJC Scopus subject areas

    • Software
    • Computer Science Applications

    Fingerprint Dive into the research topics of 'DomainChroma: Providing Optimal Countermeasures against Malicious Domain Names'. Together they form a unique fingerprint.

  • Cite this

    Chiba, D., Akiyama, M., Yagi, T., Yada, T., Mori, T., & Goto, S. (2017). DomainChroma: Providing Optimal Countermeasures against Malicious Domain Names. In Proceedings - 2017 IEEE 41st Annual Computer Software and Applications Conference, COMPSAC 2017 (Vol. 1, pp. 643-648). [8029671] IEEE Computer Society. https://doi.org/10.1109/COMPSAC.2017.112