Clustering Malicious DNS Queries for Blacklist-Based Detection.
Akihiro SatohYutaka NakamuraDaiki NobayashiKazuto SasaiGen KitagataTakeshi IkenagaPublished in: IEICE Trans. Inf. Syst. (2019)
Keyphrases
- clustering algorithm
- k means
- query processing
- anomaly detection
- clustering method
- database queries
- detection algorithm
- data objects
- query language
- response time
- automatic detection
- false alarms
- database
- cluster analysis
- efficient processing
- false positives
- document clustering
- query evaluation
- retrieval systems
- data clustering
- detection method
- object detection
- data sources
- load balancing
- detection rate
- self organizing maps
- spectral clustering
- unsupervised learning
- hierarchical clustering
- complex queries
- data structure
- false positive rate
- tree patterns
- web snippets