| 一种基于自动特征工程与压缩感知的网络隧道检测方法 |
| |
| 引用本文: | 余红星,申国伟,郭春.一种基于自动特征工程与压缩感知的网络隧道检测方法[J].计算机与现代化,2019,0(6):1. |
| |
| 作者姓名: | 余红星 申国伟 郭春 |
| |
| 作者单位: | 贵州大学计算机科学与技术学院,贵州 贵阳 550025;贵州省公共大数据重点实验室,贵州 贵阳 550025;贵州大学计算机科学与技术学院,贵州 贵阳 550025;贵州省公共大数据重点实验室,贵州 贵阳 550025;贵州大学计算机科学与技术学院,贵州 贵阳 550025;贵州省公共大数据重点实验室,贵州 贵阳 550025 |
| |
| 基金项目: | 国家自然科学基金资助项目(61802081); 贵州省自然科学基金资助项目(20161052); 贵州省科技重大专项计划项目(20183001) |
| |
| 摘 要: | 利用网络隧道进行攻击、窃密等成为近年来网络安全领域的热点问题。如何提高大规模网络隧道检测分析时带来的识别精度低的问题亟需解决。针对基于DNS、HTTP协议的主流隧道检测问题,提出一种基于自动特征工程与压缩感知相结合的网络隧道检测方法。通过自动特征工程挖掘出更深层次的网络隧道特征,同时通过压缩感知算法在不损失高维特征精度的基础上实现降维,提高计算效率。在大规模真实数据集上实验结果表明,DNS隧道检测的F-measure值能达到95%,HTTP隧道检测的F-measure值能达到82%以上。
|
| 关 键 词: | 自动特征工程 压缩感知 DNS隧道 HTTP隧道 |
| 收稿时间: | 2019-06-14 |
Network Tunnel Detection Method Based on |
| |
| YU Hong-xing,SHEN Guo-wei,GUO Chun.Network Tunnel Detection Method Based on[J].Computer and Modernization,2019,0(6):1. |
| |
| Authors: | YU Hong-xing SHEN Guo-wei GUO Chun |
| |
| Abstract: | Using network tunnel to attack and steal has become a hot issue in the field of network security in recent years. How to improve the recognition accuracy caused by large-scale network tunnel detection and analysis is needed to be solved. Aiming at the problem of mainstream tunnel detection based on DNS and HTTP protocols, a network tunnel detection method based on automatic feature engineering and compressed sensing is proposed. Through the automatic feature engineering, the deeper network tunnel features are mined. The dimensionality is reduced and the computational efficiency is improved by the compressed sensing algorithm without losing the high-dimensional feature precision. The experimental results on large-scale real data sets show that the F-measure value of DNS tunnel detection can reach 95%, and the F-measure value of HTTP tunnel detection can reach more than 82%. |
| |
| Keywords: | automatic feature engineering compressed sensing DNS tunnel HTTP tunnel |
| 本文献已被 万方数据 等数据库收录! |
| 点击此处可从《计算机与现代化》浏览原始摘要信息 |
|
点击此处可从《计算机与现代化》下载全文 |
