CROFlux — Passive DNS method for detecting fast-flux domains

Abstract

In this paper we present our approach to fast flux detection called CROFlux that relies on the passive DNS replication method. The presented model can significantly reduce the number of false positive detections, and can detect other suspicious domains that are used for fast flux. This algorithm is used and implemented in Advanced Cyber Defense Centre - a… (More)
DOI: 10.1109/MIPRO.2014.6859782

Topics

3 Figures and Tables

Statistics

02040201520162017
Citations per Year

Citation Velocity: 4

Averaging 4 citations per year over the last 3 years.

Learn more about how we calculate this metric in our FAQ.

Slides referencing similar topics