MalDIST: From Encrypted Traffic Classification to Malware Traffic Detection and Classification

Ofek Bader; Adi Lichy; Chen Hajaj; Ran Dubin; Amit Dvir

doi:10.1109/CCNC49033.2022.9700625

MalDIST: From Encrypted Traffic Classification to Malware Traffic Detection and Classification

Ofek Bader
, Adi Lichy
, Chen Hajaj
, Ran Dubin
, Amit Dvir

פרסום מחקרי: פרק בספר / בדוח / בכנס › פרסום בספר כנס › ביקורת עמיתים

45 ציטוטים ‏(Scopus)

תקציר

The world of malware is shifting towards using encrypted traffic. While encryption improves the privacy of users, it brings challenges in the fields of QoS, QoE, and cybersecurity. Recent state-of-the-art Deep-Learning architectures for encrypted traffic classifications demonstrated superb results in tasks of traffic categorization over encrypted traffic. In this paper, we leverage the feasibility to use such architectures for the tasks of malware detection and classification to gain insights into how well these architectures perform in the domain of malware traffic. Specifically, we present a Deep-Learning model for malware traffic detection and classification (MalDIST), which outperforms both classical ML and DL malware traffic classification models both in terms of detection and classification.

שפה מקורית	אנגלית
כותר פרסום המארח	2016 13th IEEE Annual Consumer Communications & Networking Conference (CCNC)
עמודים	527-533
מספר עמודים	7
מסת"ב (אלקטרוני)	978-1-4673-9292-1
מזהי עצם דיגיטלי (DOIs)	https://doi.org/10.1109/CCNC49033.2022.9700625
סטטוס פרסום	פורסם - 2022
אירוע	19th IEEE Annual Consumer Communications and Networking Conference, CCNC 2022 - Virtual, Online, ארצות הברית משך הזמן: 8 ינו׳ 2022 → 11 ינו׳ 2022

סדרות פרסומים

שם	Proceedings - IEEE Consumer Communications and Networking Conference, CCNC
ISSN (מודפס)	2331-9860

כנס

כנס	19th IEEE Annual Consumer Communications and Networking Conference, CCNC 2022
מדינה/אזור	ארצות הברית
עיר	Virtual, Online
תקופה	8/01/22 → 11/01/22

גישה למסמך

10.1109/CCNC49033.2022.9700625

קבצים וקישורים אחרים

Link to publication in Scopus

פורמט ציטוט ביבליוגרפי

Bader, O., Lichy, A., Hajaj, C., Dubin, R., & Dvir, A. (2022). MalDIST: From Encrypted Traffic Classification to Malware Traffic Detection and Classification. ב- 2016 13th IEEE Annual Consumer Communications & Networking Conference (CCNC) (עמודים 527-533). (Proceedings - IEEE Consumer Communications and Networking Conference, CCNC). https://doi.org/10.1109/CCNC49033.2022.9700625

@inproceedings{6af6c931d6bc4ab8a13f380e23a6a76f,

title = "MalDIST: From Encrypted Traffic Classification to Malware Traffic Detection and Classification",

abstract = "The world of malware is shifting towards using encrypted traffic. While encryption improves the privacy of users, it brings challenges in the fields of QoS, QoE, and cybersecurity. Recent state-of-the-art Deep-Learning architectures for encrypted traffic classifications demonstrated superb results in tasks of traffic categorization over encrypted traffic. In this paper, we leverage the feasibility to use such architectures for the tasks of malware detection and classification to gain insights into how well these architectures perform in the domain of malware traffic. Specifically, we present a Deep-Learning model for malware traffic detection and classification (MalDIST), which outperforms both classical ML and DL malware traffic classification models both in terms of detection and classification.",

author = "Ofek Bader and Adi Lichy and Chen Hajaj and Ran Dubin and Amit Dvir",

note = "Publisher Copyright: {\textcopyright} 2022 IEEE.; 19th IEEE Annual Consumer Communications and Networking Conference, CCNC 2022 ; Conference date: 08-01-2022 Through 11-01-2022",

year = "2022",

doi = "10.1109/CCNC49033.2022.9700625",

language = "אנגלית",

series = "Proceedings - IEEE Consumer Communications and Networking Conference, CCNC",

pages = "527--533",

booktitle = "2016 13th IEEE Annual Consumer Communications \& Networking Conference (CCNC)",

}

Bader, O, Lichy, A, Hajaj, C , Dubin, R & Dvir, A 2022, MalDIST: From Encrypted Traffic Classification to Malware Traffic Detection and Classification. ב- 2016 13th IEEE Annual Consumer Communications & Networking Conference (CCNC). Proceedings - IEEE Consumer Communications and Networking Conference, CCNC, עמודים 527-533, 19th IEEE Annual Consumer Communications and Networking Conference, CCNC 2022, Virtual, Online, ארצות הברית, 8/01/22. https://doi.org/10.1109/CCNC49033.2022.9700625

MalDIST: From Encrypted Traffic Classification to Malware Traffic Detection and Classification. / Bader, Ofek; Lichy, Adi; Hajaj, Chen et al.
2016 13th IEEE Annual Consumer Communications & Networking Conference (CCNC). 2022. עמוד 527-533 (Proceedings - IEEE Consumer Communications and Networking Conference, CCNC).

פרסום מחקרי: פרק בספר / בדוח / בכנס › פרסום בספר כנס › ביקורת עמיתים

TY - GEN

T1 - MalDIST

T2 - 19th IEEE Annual Consumer Communications and Networking Conference, CCNC 2022

AU - Bader, Ofek

AU - Lichy, Adi

AU - Hajaj, Chen

AU - Dubin, Ran

AU - Dvir, Amit

PY - 2022

Y1 - 2022

N2 - The world of malware is shifting towards using encrypted traffic. While encryption improves the privacy of users, it brings challenges in the fields of QoS, QoE, and cybersecurity. Recent state-of-the-art Deep-Learning architectures for encrypted traffic classifications demonstrated superb results in tasks of traffic categorization over encrypted traffic. In this paper, we leverage the feasibility to use such architectures for the tasks of malware detection and classification to gain insights into how well these architectures perform in the domain of malware traffic. Specifically, we present a Deep-Learning model for malware traffic detection and classification (MalDIST), which outperforms both classical ML and DL malware traffic classification models both in terms of detection and classification.

AB - The world of malware is shifting towards using encrypted traffic. While encryption improves the privacy of users, it brings challenges in the fields of QoS, QoE, and cybersecurity. Recent state-of-the-art Deep-Learning architectures for encrypted traffic classifications demonstrated superb results in tasks of traffic categorization over encrypted traffic. In this paper, we leverage the feasibility to use such architectures for the tasks of malware detection and classification to gain insights into how well these architectures perform in the domain of malware traffic. Specifically, we present a Deep-Learning model for malware traffic detection and classification (MalDIST), which outperforms both classical ML and DL malware traffic classification models both in terms of detection and classification.

UR - https://www.scopus.com/pages/publications/85133371626

U2 - 10.1109/CCNC49033.2022.9700625

DO - 10.1109/CCNC49033.2022.9700625

M3 - ???researchoutput.researchoutputtypes.contributiontobookanthology.conference???

AN - SCOPUS:85133371626

T3 - Proceedings - IEEE Consumer Communications and Networking Conference, CCNC

SP - 527

EP - 533

BT - 2016 13th IEEE Annual Consumer Communications & Networking Conference (CCNC)

Y2 - 8 January 2022 through 11 January 2022

ER -

MalDIST: From Encrypted Traffic Classification to Malware Traffic Detection and Classification

תקציר

סדרות פרסומים

כנס

גישה למסמך

קבצים וקישורים אחרים

טביעת אצבע

פורמט ציטוט ביבליוגרפי