Malicious URL Linkage Analysis and Common Pattern Discovery
Title | Malicious URL Linkage Analysis and Common Pattern Discovery |
Publication Type | Conference Paper |
Year of Publication | 2019 |
Authors | Huang, S., Chuang, T., Huang, S., Ban, T. |
Conference Name | 2019 IEEE International Conference on Big Data (Big Data) |
Date Published | Dec. 2019 |
Publisher | IEEE |
ISBN Number | 978-1-7281-0858-2 |
Keywords | blacklisting, business communication, computer network security, Couplings, Crawlers, drive-by download, graph theory, graph-based model, Human Behavior, Industries, Internet, linkage analysis, malicious destinations, malicious domain name, malicious domain names, Malicious URL, malicious URL linkage analysis, Malware, malware analysis, Metrics, open-source threat intelligence, privacy, pubcrawl, real enterprise network, resilience, Resiliency, Uniform resource locators, URL, Web pages, website |
Abstract | Malicious domain names are consistently changing. It is challenging to keep blacklists of malicious domain names up-to-date because of the time lag between its creation and detection. Even if a website is clean itself, it does not necessarily mean that it won't be used as a pivot point to redirect users to malicious destinations. To address this issue, this paper demonstrates how to use linkage analysis and open-source threat intelligence to visualize the relationship of malicious domain names whilst verifying their categories, i.e., drive-by download, unwanted software etc. Featured by a graph-based model that could present the inter-connectivity of malicious domain names in a dynamic fashion, the proposed approach proved to be helpful for revealing the group patterns of different kinds of malicious domain names. When applied to analyze a blacklisted set of URLs in a real enterprise network, it showed better effectiveness than traditional methods and yielded a clearer view of the common patterns in the data. |
URL | https://ieeexplore.ieee.org/document/9006145 |
DOI | 10.1109/BigData47090.2019.9006145 |
Citation Key | huang_malicious_2019 |
- Malicious URL
- website
- Web pages
- URL
- Uniform resource locators
- Resiliency
- resilience
- real enterprise network
- pubcrawl
- privacy
- open-source threat intelligence
- Metrics
- Malware Analysis
- malware
- malicious URL linkage analysis
- blacklisting
- malicious domain names
- malicious domain name
- malicious destinations
- linkage analysis
- internet
- Industries
- Human behavior
- graph-based model
- graph theory
- drive-by download
- Crawlers
- Couplings
- computer network security
- business communication