Malicious host detection and classification in cloud forensics with DNN and SFLO approaches

The problem of malicious host detection in a computer network is reviewed. Activity of computer network hosts is tracking by a noisy detector. The paper suggests method for detection malicious hosts using activity timeseries classification. The approach is based on hidden Markov chain model that analyses timeseries and consecutive search of the most probable final state of the model. Efficiency of the approach is based on assumption that advanced persisted threats are localised in time, therefore malicious hosts in a computer network can be detected by virtue of activity comparison with reliable safe hosts.

Download Full-text

Malicious Host Detection by Imaging SYN Packets and A Neural Network

2018 International Symposium on Networks, Computers and Communications (ISNCC) ◽

10.1109/isncc.2018.8530964 ◽

2018 ◽

Author(s):

Ryo Nakamura ◽

Yuji Sekiya ◽

Daisuke Miyamoto ◽

Kazuya Okada ◽

Tomohiro Ishihara

Keyword(s):

Neural Network ◽

Host Detection ◽

Malicious Host

Download Full-text

BlockSLaaS: Blockchain Assisted Secure Logging-as-a-Service for Cloud Forensics

Communications in Computer and Information Science - Security and Privacy ◽

10.1007/978-981-13-7561-3_6 ◽

2019 ◽

pp. 77-88 ◽

Cited By ~ 1

Author(s):

Sagar Rane ◽

Arati Dixit

Keyword(s):

Cloud Forensics

Download Full-text

Temporal Detection Limits of Remnant Larval Bloodmeals in Nymphal Ixodes scapularis (Say, Ixodida: Ixodidae) Using Two Next-Generation Sequencing DNA Barcoding Assays

Journal of Medical Entomology ◽

10.1093/jme/tjaa192 ◽

2020 ◽

Author(s):

Genevieve A M Lumsden ◽

Evgeny V Zakharov ◽

Sarah Dolynskyj ◽

J Scott Weese ◽

L Robbin Lindsay ◽

...

Keyword(s):

Next Generation Sequencing ◽

Dna Barcoding ◽

Ixodes Scapularis ◽

Life Stage ◽

Next Generation ◽

Host Detection ◽

Host Identification ◽

Species Specific ◽

Generation Sequencing ◽

Assay Detection

Abstract Using next-generation sequencing DNA barcoding, we aimed to determine: 1) if the larval bloodmeal can be detected in Ixodes scapularis nymphs and 2) the post-moult temporal window for detection of the larval bloodmeal. Subsets of 30 nymphs fed on a domestic rabbit (Oryctolagus cuniculus Linnaeus, Lagomorphia: Leporidae) as larvae were reared and frozen at 11 time points post-moult, up to 150 d. Vertebrate DNA was amplified using novel universal (UP) and species-specific primers (SSP) and sequenced for comparison against cytochrome c oxidase subunit I barcodes to infer host identification. Detectable bloodmeals decreased as time since moult increased for both assays. For the SSP assay, detection of bloodmeals decreased from 96.7% (n = 29/30) in day 0 nymphs to 3.3% (n = 1/30) and 6.7% (n = 2/30) at 4- and 5-mo post-moult, respectively. A shorter temporal detection period was achieved with the UP assay, declining from 16.7% (n = 5/30) in day 0 nymphs to 0/30 in 3-d-old nymphs. Bloodmeal detection was nonexistent for the remaining cohorts, with the exception of 1/30 nymphs at 2-mo post-moult. Host detection was significantly more likely using the SSP assay compared to the UP assay in the first three time cohorts (day 0: χ 2 = 39.1, P < 0.005; day 2: χ 2 = 19.2, P < 0.005; day 3: χ 2 = 23.3, P < 0.005). Regardless of the primer set used, the next-generation sequencing DNA barcoding assay was able to detect host DNA from a larval bloodmeal in the nymphal life stage; however, a short window with a high proportion of detection post-moult was achieved.

Download Full-text