| 胡安磊* ** ****,谢高岗*** ****,苑卫国**,魏金侠*** ****,付豪*** ****.基于顶级域解析日志的递归DNS识别方法[J].高技术通讯(中文),2023,33(9):916~926 |
| 基于顶级域解析日志的递归DNS识别方法 |
| A recursive DNS identification method based on top level domain resolution log |
| |
| DOI:10. 3772/ j. issn. 1002-0470. 2023. 09. 003 |
| 中文关键词: 递归域名系统(DNS); 特征识别; 无监督特征选择; 聚类算法 |
| 英文关键词: recursive domain name system (DNS), feature recognition, unsupervised feature selection, clustering algorithm |
| 基金项目: |
| 作者 | 单位 | | 胡安磊* ** **** | (*中国科学院计算技术研究所北京 100190)
(**中国互联网络信息中心北京 100190)
(***中国科学院计算机网络信息中心北京 100083)
(****中国科学院大学北京 100049) | | 谢高岗*** **** | | | 苑卫国** | | | 魏金侠*** **** | | | 付豪*** **** | |
|
| 摘要点击次数: 711 |
| 全文下载次数: 625 |
| 中文摘要: |
| 递归域名系统(DNS)根据其服务的开放性、进行递归查询的目的等可分为不同的类型,递归DNS类型的准确识别,对于对根、顶级和各级权威DNS的分析与运行具有重要意义。针对递归DNS的准确识别问题,本文通过分析 .CN国家顶级域名系统的解析日志,提出基于递归查询的行为特征识别递归DNS类型的方法。该方法从多个维度信息来筛选甄别表征全量日志信息,基于无监督特征选择方法选择重要特征,实现同类型递归DNS的准确聚类。实验结果表明,该方法能高效准确识别出递归DNS类型。 |
| 英文摘要: |
| Recursive domain name system (DNS) can be categoraized into different types according to the characteristics in terms of the resolution service openness and the purpose of recursive queries. The accurate identification of recursive DNS types has an important impact on the analysis and operation of root, top level and all levels of authoritative DNS. The accuracy of traditional method based on the character features needs to be further improved. Aiming at the accurate identification of the types of each recursive DNS, this paper first analyzes the query log data from .CN national top level DNS, and then proposes a recursive DNS type identification method based on the observed behavioral characteristics of recursive query. Specifically, this method distills the full amount of log information from multiple dimensions and selects important features based on unsupervised feature selection, in order to realizes accurate clustering of recursive DNS. Experimental results show that this method can identify recursive DNS types efficiently and accurately. |
|
查看全文
查看/发表评论 下载PDF阅读器 |
| 关闭 |
