IDEAS home Printed from https://ideas.repec.org/p/tsa/wpaper/0150mss.html
   My bibliography  Save this paper

Cross-Layer Detection of Malicious Websites

Author

Listed:
  • Li Xu
  • Zhenxin Zhan
  • Shouhuai Xu
  • Keying Ye
  • Keesook Han
  • Frank Born

Abstract

Malicious websites have become a major attack tool of the adversary. There are two main approaches to detect malicious websites: static and dynamic. The static approach is centered on the static analysis of website contents and can scale up to a large number of websites in cyberspace. However, this approach has limited success in dealing with sophisticated attacks that include obfuscation. The dynamic approach is centered on the analysis of website contents via their run-time behaviors, and can cope with these sophisticated attacks. However, this approach is often expensive and cannot scale up to the magnitude of the number of websites in cyberspace. This research aims to achieve the best performance of two malicious website detection approaches simultaneously. In this paper, we propose an analysis of the corresponding network-layer traffic between the browser and the web server by incorporating the static analysis of website contents, which is conducted at the application layer. The insight of this approach is that the network-layer may expose useful information about malicious websites from a different perspective. Evaluation based on the data collected during 37 days shows that certain cross-layer detection methods can be almost as effective as the dynamic approach. Performance experiments show that, when both approaches are deployed as a service, the crosslayer detection approach is about 50 times faster than the dynamic approach.

Suggested Citation

  • Li Xu & Zhenxin Zhan & Shouhuai Xu & Keying Ye & Keesook Han & Frank Born, 2013. "Cross-Layer Detection of Malicious Websites," Working Papers 0150mss, College of Business, University of Texas at San Antonio.
    • Handle: RePEc:tsa:wpaper:0150mss
    as

    Download full text from publisher

    File URL: http://interim.business.utsa.edu/wps/mss/0003MSS-432-2013.pdf
    File Function: Full text
    Download Restriction: no
    ---><---

    References listed on IDEAS

    as
    1. S. le Cessie & J. C. van Houwelingen, 1992. "Ridge Estimators in Logistic Regression," Journal of the Royal Statistical Society Series C, Royal Statistical Society, vol. 41(1), pages 191-201, March.
    Full references (including those not matched with items on IDEAS)

    Citations

    Citations are extracted by the CitEc Project, subscribe to its RSS feed for this item.
    as


    Cited by:

    1. Nikola Anđelić & Sandi Baressi Šegota & Ivan Lorencin & Matko Glučina, 2022. "Detection of Malicious Websites Using Symbolic Classifier," Future Internet, MDPI, vol. 14(12), pages 1-30, November.
    2. Routhu Srinivasa Rao & Amey Umarekar & Alwyn Roshan Pais, 2022. "Application of word embedding and machine learning in detecting phishing websites," Telecommunication Systems: Modelling, Analysis, Design and Management, Springer, vol. 79(1), pages 33-45, January.

    Most related items

    These are the items that most often cite the same works as this one and are cited by the same works as this one.
    1. Christopher J Greenwood & George J Youssef & Primrose Letcher & Jacqui A Macdonald & Lauryn J Hagg & Ann Sanson & Jenn Mcintosh & Delyse M Hutchinson & John W Toumbourou & Matthew Fuller-Tyszkiewicz &, 2020. "A comparison of penalised regression methods for informing the selection of predictive markers," PLOS ONE, Public Library of Science, vol. 15(11), pages 1-14, November.
    2. André Altmann & Michal Rosen-Zvi & Mattia Prosperi & Ehud Aharoni & Hani Neuvirth & Eugen Schülter & Joachim Büch & Daniel Struck & Yardena Peres & Francesca Incardona & Anders Sönnerborg & Rolf Kaise, 2008. "Comparison of Classifier Fusion Methods for Predicting Response to Anti HIV-1 Therapy," PLOS ONE, Public Library of Science, vol. 3(10), pages 1-9, October.
    3. Janns Alvaro Patiño-Saucedo & Paola Patricia Ariza-Colpas & Shariq Butt-Aziz & Marlon Alberto Piñeres-Melo & José Luis López-Ruiz & Roberto Cesar Morales-Ortega & Emiro De-la-hoz-Franco, 2022. "Predictive Model for Human Activity Recognition Based on Machine Learning and Feature Selection Techniques," IJERPH, MDPI, vol. 19(19), pages 1-21, September.
    4. František Dařena & Jan Přichystal, 2018. "Analysis of the Association between Topics in Online Documents and Stock Price Movements," Acta Universitatis Agriculturae et Silviculturae Mendelianae Brunensis, Mendel University Press, vol. 66(6), pages 1431-1439.
    5. repec:wyi:journl:002122 is not listed on IDEAS
    6. Wayne DeSarbo & Heungsun Hwang & Ashley Stadler Blank & Eelco Kappe, 2015. "Constrained Stochastic Extended Redundancy Analysis," Psychometrika, Springer;The Psychometric Society, vol. 80(2), pages 516-534, June.
    7. Li Shaoyu & Lu Qing & Fu Wenjiang & Romero Roberto & Cui Yuehua, 2009. "A Regularized Regression Approach for Dissecting Genetic Conflicts that Increase Disease Risk in Pregnancy," Statistical Applications in Genetics and Molecular Biology, De Gruyter, vol. 8(1), pages 1-28, October.
    8. Meisam Moghimbeygi & Anahita Nodehi, 2022. "Multinomial Principal Component Logistic Regression on Shape Data," Journal of Classification, Springer;The Classification Society, vol. 39(3), pages 578-599, November.
    9. G Johnes, 2005. "Nations will fall? Revisiting the economic determinants of attitudes to European integration," Working Papers 566772, Lancaster University Management School, Economics Department.
    10. Butaru, Florentin & Chen, Qingqing & Clark, Brian & Das, Sanmay & Lo, Andrew W. & Siddique, Akhtar, 2016. "Risk and risk management in the credit card industry," Journal of Banking & Finance, Elsevier, vol. 72(C), pages 218-239.
    11. repec:lan:wpaper:4385 is not listed on IDEAS
    12. Matthew Herland & Richard A. Bauder & Taghi M. Khoshgoftaar, 2020. "Approaches for identifying U.S. medicare fraud in provider claims data," Health Care Management Science, Springer, vol. 23(1), pages 2-19, March.
    13. Paolo Cimbali & Marco De Leonardis & Alessio Fiume & Barbara La Ganga & Luciana Meoli & Marco Orlandi, 2023. "A decision-making rule to detect insufficient data quality - an application of statistical learning techniques to the non-performing loans banking data," IFC Bulletins chapters, in: Bank for International Settlements (ed.), Post-pandemic landscape for central bank statistics, volume 58, Bank for International Settlements.
    14. Zanin, Luca, 2020. "Combining multiple probability predictions in the presence of class imbalance to discriminate between potential bad and good borrowers in the peer-to-peer lending market," Journal of Behavioral and Experimental Finance, Elsevier, vol. 25(C).
    15. Franz Ratzinger & Harald Bruckschwaiger & Martin Wischenbart & Bernhard Parschalk & Delmiro Fernandez-Reyes & Heimo Lagler & Alexandra Indra & Wolfgang Graninger & Stefan Winkler & Sanjeev Krishna & M, 2012. "Rapid Diagnostic Algorithms as a Screening Tool for Tuberculosis: An Assessor Blinded Cross-Sectional Study," PLOS ONE, Public Library of Science, vol. 7(11), pages 1-6, November.
    16. Arvanitakis, K. & Avlonitis, M. & Papadimitriou, E., 2018. "Introducing stochastic recurrence interval to classification algorithms for identifying asperity patterns," Physica A: Statistical Mechanics and its Applications, Elsevier, vol. 512(C), pages 566-577.
    17. Sunil Kumar & Ilyoung Chong, 2018. "Correlation Analysis to Identify the Effective Data in Machine Learning: Prediction of Depressive Disorder and Emotion States," IJERPH, MDPI, vol. 15(12), pages 1-24, December.
    18. Wenfa Li & Hongzhe Liu & Peng Yang & Wei Xie, 2016. "Supporting Regularized Logistic Regression Privately and Efficiently," PLOS ONE, Public Library of Science, vol. 11(6), pages 1-19, June.
    19. Luca Insolia & Ana Kenney & Martina Calovi & Francesca Chiaromonte, 2021. "Robust Variable Selection with Optimality Guarantees for High-Dimensional Logistic Regression," Stats, MDPI, vol. 4(3), pages 1-17, August.
    20. M. Revan Özkale & Atif Abbasi, 2022. "Iterative restricted OK estimator in generalized linear models and the selection of tuning parameters via MSE and genetic algorithm," Statistical Papers, Springer, vol. 63(6), pages 1979-2040, December.
    21. Kadri Ulas Akay, 2014. "A graphical evaluation of logistic ridge estimator in mixture experiments," Journal of Applied Statistics, Taylor & Francis Journals, vol. 41(6), pages 1217-1232, June.
    22. Marco-Antonio Moreno-Ibarra & Yenny Villuendas-Rey & Miltiadis D. Lytras & Cornelio Yáñez-Márquez & Julio-César Salgado-Ramírez, 2021. "Classification of Diseases Using Machine Learning Algorithms: A Comparative Study," Mathematics, MDPI, vol. 9(15), pages 1-21, July.

    Corrections

    All material on this site has been provided by the respective publishers and authors. You can help correct errors and omissions. When requesting a correction, please mention this item's handle: RePEc:tsa:wpaper:0150mss. See general information about how to correct material in RePEc.

    If you have authored this item and are not yet registered with RePEc, we encourage you to do it here. This allows to link your profile to this item. It also allows you to accept potential citations to this item that we are uncertain about.

    If CitEc recognized a bibliographic reference but did not link an item in RePEc to it, you can help with this form .

    If you know of missing items citing this one, you can help us creating those links by adding the relevant references in the same way as above, for each refering item. If you are a registered author of this item, you may also want to check the "citations" tab in your RePEc Author Service profile, as there may be some citations waiting for confirmation.

    For technical questions regarding this item, or to correct its authors, title, abstract, bibliographic or download information, contact: Wendy Frost (email available below). General contact details of provider: https://edirc.repec.org/data/cbutsus.html .

    Please note that corrections may take a couple of weeks to filter through the various RePEc services.

    IDEAS is a RePEc service. RePEc uses bibliographic data supplied by the respective publishers.