期刊文献+
任意字段
题名或关键词
题名
关键词
文摘
作者
第一作者
机构
刊名
分类号
参考文献
作者简介
基金资助
栏目信息

基于多层卷积模型的恶意URL特征自动提取 被引量:3

Automatic extraction of malicious URL features based on multilayer convolution model
下载PDF
导出
摘要 针对恶意仿冒URL的有效识别问题,提出一种基于skip-gram和连续多层卷积层的模型相结合的网络模型完成对恶意仿冒URL进行特征提取并检测。根据URL结构特性将其切分为5个部分,使用skip-gram对字符进行稠密编码将URL数据信息进行转化;使用连续多个卷积层的CNN模型针对URL的每个部分完成独立特征提取,将特征提取结果进行整合;使用贝叶斯、随机森林等多种分类器对模型提取特征空间进行评估。实验结果表明,该方法能够快速有效地对恶意仿冒URL进行检测,检测准确率可达97%,效果优于典型的eXpose多核卷积模型。 To effectively identify malicious counterfeit URLs,a network model based on skip-gram and continuous multi-layer convolution layer was proposed to extract and detect malicious counterfeit URLs.The URL was divided into five parts according to its structural characteristics,and skip-gram was used to densely encode the characters to transform the URL data information.The CNN model of successive convolution layers was used to extract independent features for each part of the URL,and the results of feature extraction were integrated.Bayesian and random forest classifiers were used to evaluate the feature space extracted from the model.Experimental results show that the proposed method can detect malicious counterfeit URLs quickly and effectively,and the detection accuracy can reach 97%,which is better than the typical eXpose multi-core convolution model.
作者 张婷 钱丽萍 汪立东 张慧 ZHANG Ting;QIAN Li-ping;WANG Li-dong;ZHANG Hui(College of Electrical and Information Engineering,Beijing University of Civil Engineering and Architecture,Beijing 100044,China;National Computer Network Emergency Response Technical Team/Coordination Center of China,Beijing 100029,China)
机构地区 北京建筑大学电气与信息工程学院 国家计算机网络应急技术处理协调中心
出处 《计算机工程与设计》 北大核心 2020年第7期1821-1828,共8页 Computer Engineering and Design
基金 国家自然科学基金项目(61571144) 北京建筑大学博士基金项目(00331616014) 北京建筑大学研究生创新基金项目(PG2019069)。
关键词 恶意仿冒URL 卷积神经网络 字符嵌入 特征提取 深度学习 malicious counterfeit URLs convolutional neural network character embedding feature extraction deep learning
分类号 TP391 [自动化与计算机技术—计算机应用技术]
  • 相关文献

参考文献5

二级参考文献99

  • 1Mahmoud K, Youssef I, Andrew J. Phishing detection: A literature survey. IEEE Communications Surveys & Tutorials, 2013, 15(4): 2091-2121.
  • 2Paul K, Georgia K, Hector G M. Fighting spam on social Web sites a survey of approaches and future challenges. IEEE Internet Computing, 2007, 11(6): 36-45.
  • 3Priya M, Sandhya L, Ciza T. A static approach to detect drive-by-download attacks on Webpages//Proceedings of the International Conference on Control Communication and Computing. Xi'an, China, 2013:298-303.
  • 4Mavrommatis N P P, Monrose M A R F. All your iframes point to us//Proceedings of the 17th USENIX Security Symposium. San Jose, USA, 2008:1-22.
  • 5Ma J, Saul L K, Savage S, Voetker G M. Beyond blacklists: Learning to detect malicious Web sites from suspicious URLs//Proceedings of the 15th ACM SIGKDD International Conference on Knowledge Discovery and Data Mining. New York, USA, 2009: 1245-1253.
  • 6Ma J, Saul L K, Savage S, Voelker G M. Identifying suspi- cious URLs: An application of large-scale online learning// Proceedings of the 26th Annual International Conference on Machine Learning. Montreal, Canada, 2009:681-688.
  • 7Ma J, Saul L K, Savage S, Voelker G M. Learning to detect malicious URLs. ACM Transactions on Intelligent Systems and Technology, 2011, 2(3): 1-24.
  • 8Canali D, et al. Prophiler: A fast filter for the large-scale detection of malicious Web pages//Proceedings of the 20th International Conference on World Wide Web. Hyderabad, India, 2011:197-206.
  • 9Thomas K, et al. Design and evaluation of a real-time URL spam filtering service//Proceedings of the IEEE Symposium on Security and Privacy. Oakland, USA, 2011:447-462.
  • 10Yadav S, Reddy A K K, Reddy A L, et al. Detecting algorithmic.ally generated malicious domain names//Proeeedings of the 10th ACM SIGCOMM Conference on Internet Measurement. New York, USA, 2010:48-61.

共引文献79

同被引文献82

引证文献3

二级引证文献24

计算机工程与设计
2020年 第7期

相关作者

内容加载中请稍等...

相关机构

内容加载中请稍等...

相关主题

内容加载中请稍等...

浏览历史

内容加载中请稍等...
;
使用帮助 返回顶部