检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:刘经纬 赵晶睛[1] 贾磊 白梦莹 于潼 方颖[1] LIU Jingwei;ZHAO Jingjing;JIA Lei;BAI Mengying;YU Tong;FANG Ying(Tianjin Institute of Navigation Instruments,Tianjin 300131,China)
出 处:《信息安全与通信保密》2022年第12期73-80,共8页Information Security and Communications Privacy
摘 要:随着互联网的发展及政务、商务领域电子化的普及,基于信息安全和隐私保护的需求,以及人们的信息安全意识日益提高。现阶段,数据的传输和通信大量采用加密技术,使加密流量呈爆发式增长。加密流量在保护个人数据安全的同时也让恶意流量的传播变得更加隐蔽,恶意加密流量检测已经成为信息安全领域的一个重要研究方向。基于此,提出一种基于JA3指纹识别技术的恶意加密流量识别方法,在传统JA3技术的基础上通过聚类法识别恶意流量,不经过解密即可对加密流量进行识别。With the development of the Internet and the popularization of e-government and business,based on the demand for information security and privacy protection,people’s awareness of information security is increasing.Nowadays,encryption is used extensively in the transmission and communication of data,which leads to an explosive growth of encrypted traffic.While encrypted traffic protects personal data security,it also makes the spread of malicious traffic more covert,and malicious encrypted traffic detection becomes an important research direction in the field of information security.In view of this,this paper proposes a malicious encrypted traffic identification method based on JA3 fingerprint identification technology,which identifies malicious traffic by clustering method on the basis of traditional JA3 technology and can identify encrypted traffic without decryption.
分 类 号:TP393.0[自动化与计算机技术—计算机应用技术]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.117