MalDIST: From Encrypted Traffic Classification to Malware Traffic Detection and Classification

Ofek Bader, Adi Lichy, Chen Hajaj, Ran Dubin, Amit Dvir

Research output: Contribution to journalConference articlepeer-review

19 Scopus citations

Abstract

The world of malware is shifting towards using encrypted traffic. While encryption improves the privacy of users, it brings challenges in the fields of QoS, QoE, and cybersecurity. Recent state-of-the-art Deep-Learning architectures for encrypted traffic classifications demonstrated superb results in tasks of traffic categorization over encrypted traffic. In this paper, we leverage the feasibility to use such architectures for the tasks of malware detection and classification to gain insights into how well these architectures perform in the domain of malware traffic. Specifically, we present a Deep-Learning model for malware traffic detection and classification (MalDIST), which outperforms both classical ML and DL malware traffic classification models both in terms of detection and classification.

Original languageEnglish
Pages (from-to)527-533
Number of pages7
JournalProceedings - IEEE Consumer Communications and Networking Conference, CCNC
DOIs
StatePublished - 2022
Externally publishedYes
Event19th IEEE Annual Consumer Communications and Networking Conference, CCNC 2022 - Virtual, Online, United States
Duration: 8 Jan 202211 Jan 2022

Bibliographical note

Publisher Copyright:
© 2022 IEEE.

Fingerprint

Dive into the research topics of 'MalDIST: From Encrypted Traffic Classification to Malware Traffic Detection and Classification'. Together they form a unique fingerprint.

Cite this