@article{oai:kyutech.repo.nii.ac.jp:00006437,
 author = {Sato, Akihiro and 佐藤, 彰洋 and Nakamura, Yutaka and 中村, 豊 and Nobayashi, Daiki and 野林, 大起 and Sasai, Kazuto and Kitagata, Gen and Ikenaga, Takeshi and 池永, 全志},
 issue = {7},
 journal = {IEICE Transactions on Information and Systems},
 month = {Jul},
 note = {Some of the most serious threats to network security involve malware. One common way to detect malware-infected machines in a network is by monitoring communications based on blacklists. However, such detection is problematic because (1) no blacklist is completely reliable, and (2) blacklists do not provide the sufficient evidence to allow administrators to determine the validity and accuracy of the detection results. In this paper, we propose a malicious DNS query clustering approach for blacklist-based detection. Unlike conventional classification, our cause-based classification can efficiently analyze malware communications, allowing infected machines in the network to be addressed swiftly.},
 pages = {1404--1407},
 title = {Clustering Malicious DNS Queries for Blacklist-Based Detection},
 volume = {E102.D},
 year = {2019},
 yomi = {サトウ, アキヒロ and ナカムラ, ユタカ and ノバヤシ, ダイキ and イケナガ, タケシ}
}