SYSTEM AND METHOD FOR DETECTING DNS TRAFFIC ANOMALIES

SYSTEM AND METHOD FOR DETECTING DNS TRAFFIC ANOMALIES

Systems and methods for analyzing domain name system lookup data are disclosed. The method may include: calculating traffic scores for a network address based on a set of DNS lookup data associated with the network address, where the set of DNS lookup data includes a plurality of query records havin...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: MUGALI, JR. ADITYA ANAND, SIMPSON ANDREW W, WALKER SCOTT KING
Format: Patent
Sprache:eng
Schlagworte:
CALCULATING
COMPUTING
COUNTING
ELECTRIC DIGITAL DATA PROCESSING
PHYSICS
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Systems and methods for analyzing domain name system lookup data are disclosed. The method may include: calculating traffic scores for a network address based on a set of DNS lookup data associated with the network address, where the set of DNS lookup data includes a plurality of query records having one or more queried network addresses; calculating a first variance and a second variance for the network address based on the traffic scores for the network address; and determining a rank of the network address based on the first and second variances.