| 题名 |
Detecting Spam Bots by Sequential Analysis of Encrypted Traffic |
| DOI |
10.6138/JIT.2016.17.6.20150603e |
| 作者 |
Po-Ching Lin;Chi-Fang Chen;Pin-Ren Chiou |
| 关键词 |
Spam bot ; Encrypted email traffic ; Sequential analysis ; Hypothesis testing |
| 期刊名称 |
網際網路技術學刊 |
| 卷期/出版年月 |
17卷6期(2016 / 11 / 01) |
| 页次 |
1279 - 1286 |
| 内容语文 |
英文 |
| 中文摘要 |
Detecting spam bots which send spam by encrypted protocols is difficult because the transmitted content cannot be inspected. In this work, we present a detection method based on the sequential analysis method, sequential probability ratio test (SPRT). This method can detect high-profile spam bots as soon as possible, and also low-profile spam bots if they exist, from encrypted email traffic observed in the intervals of both hours and days. The ratio of email deliveries and receptions, and the number of email deliveries in the intervals serve as the detection features. The experiments were conducted based on the encrypted email traffic from the campus of National Chung Cheng University from February to April 2014. The false-positive rates of the detection method are all under 10% after verification. |
| 主题分类 |
基礎與應用科學 >
資訊科學 |
