Traceback analysis of abnormal access to electronic resources from the perspective of encrypted traffic

WEI Yujun; HE Haitao; ZHAO Qiong; YAO Renlong; LI Enlei

doi:10.11959/j.issn.1000-436x.2024258

您当前的位置：

首页 >

文章列表页 >

Traceback analysis of abnormal access to electronic resources from the perspective of encrypted traffic

Cyber Security | 更新时间：2024-12-31

- Traceback analysis of abnormal access to electronic resources from the perspective of encrypted traffic
- Journal on Communications Vol. 45, Issue Z2, Pages: 44-51(2024)
- 作者机构：
  
  中山大学网络与信息中心，广东广州 510275
- 作者简介：
- 基金信息：
- DOI：10.11959/j.issn.1000-436x.2024258
  CLC： TP393
- Received：22 October 2024，
  
  Published：30 November 2024
- 稿件说明：
移动端阅览
韦雨君,何海涛,赵琼等.基于加密流量视角的电子资源异常访问溯源分析[J].通信学报,2024,45(Z2):44-51.

WEI Yujun,HE Haitao,ZHAO Qiong,et al.Traceback analysis of abnormal access to electronic resources from the perspective of encrypted traffic[J].Journal on Communications,2024,45(Z2):44-51.
韦雨君,何海涛,赵琼等.基于加密流量视角的电子资源异常访问溯源分析[J].通信学报,2024,45(Z2):44-51. DOI： 10.11959/j.issn.1000-436x.2024258.

WEI Yujun,HE Haitao,ZHAO Qiong,et al.Traceback analysis of abnormal access to electronic resources from the perspective of encrypted traffic[J].Journal on Communications,2024,45(Z2):44-51. DOI： 10.11959/j.issn.1000-436x.2024258.

摘要

为了溯源高校图书馆电子资源过量下载、频繁访问等违规使用事件，通过利用中山大学流量大数据分析平台，基于加密流量视角对电子资源异常访问行为进行了分析。讨论了相关网络流量指标，并提出了电子资源异常访问事件的溯源思路。研究证明加密流量特征能够有效识别电子资源异常访问行为，中山大学流量大数据分析平台能够从技术层面为确保电子资源合理使用提供支持。

Abstract

To trace the misuse of university library electronic resources

such as excessive downloading and frequent access

the Sun Yat-sen University traffic big data analysis platform was leveraged to analyze abnormal access behaviors from the perspective of encrypted traffic. Relevant network traffic indicators were discussed and a methodology for tracing abnormal access incidents was proposed. The findings demonstrate that the characteristics of encrypted traffic can effectively identify abnormal access behaviors

and the Sun Yat-sen University traffic big data analysis platform provides technical support to ensure the proper use of electronic resources.

关键词

Keywords

references

中山大学图书馆电子资源版权公告 [EB/OL ] . ( 2018-07-05 )[ 2024-08-04 ] .

肖敖夏 . 高校图书馆电子资源过量下载的成因及对策 [J ] . 图书情报导刊 , 2018 , 3 ( 2 ): 29 - 32 .

XIAO A X . The causes and countermeasures for excessive downloading of electronic resources in university library [J ] . Journal of Library and Information Science , 2018 , 3 ( 2 ): 29 - 32 .

邹荣 , 张成昱 , 姜爱蓉 , 等 . 电子资源访问管理与控制系统的设计及应用 [J ] . 图书情报工作 , 2010 , 54 ( 1 ): 121 - 124 .

ZOU R , ZHANG C Y , JIANG A R , et al . Design and application of electronic resources access management and control system [J ] . Library and Information Service , 2010 , 54 ( 1 ): 121 - 124 .

邵晶 , 阎晓弟 , 周琴 , 等 . 电子资源流量控制需求分析及其解决方案 [J ] . 大学图书馆学报 , 2012 , 30 ( 4 ): 11 - 13 .

SHAO J , YAN X D , ZHOU Q , et al . The demands analysis and the solution for the electronic resources usage control [J ] . Journal of Academic Libraries , 2012 , 30 ( 4 ): 11 - 13 .

王政军 , 俞小怡 , 金玉玲 . 利用旁路监听技术约束数字资源过量下载 [J ] . 现代图书情报技术 , 2015 ( 12 ): 95 - 100 .

WANG Z J , YU X Y , JIN Y L . Using sniffer technology to constraint electronic resource excessive downloading [J ] . New Technology of Library and Information Service , 2015 ( 12 ): 95 - 100 .

雷东升 , 郭振英 . 基于EZproxy日志的电子资源异常访问行为研究 [J ] . 现代情报 , 2016 , 36 ( 7 ): 101 - 106 .

LEI D S , GUO Z Y . Research on abnormal access to electronic resources based on EZproxy logs [J ] . Journal of Modern Information , 2016 , 36 ( 7 ): 101 - 106 .

C. Fu , Q. Li , and K. Xu . Detecting Unknown Encrypted Malicious Traffic in Real Time via Flow Interaction Graph Analysis [C ] . In Proc. NDSS , 2023 .

FU C P , LI Q , XU K . Detecting unknown encrypted malicious traffic in real time via flow interaction graph analysis [C ] // Proceedings 2023 Network and Distributed System Security Symposium . Reston, VA : Internet Society , 2023 : 1 - 18 .

杨敏 , 何海涛 , 赵琼 . 流量大数据安全分析平台的设计与实现 [J ] . 通信学报 , 2018 , 39 ( S1 ): 104 - 109 .

YANG M , HE H T , ZHAO Q . Design and implementation of traffic big data security analysis platform [J ] . Journal on Communications , 2018 , 39 ( S1 ): 104 - 109 .

Views

755

下载量

CSCD

Alert me when the article has been cited

提交

Tools

Publicity Resources

Survey of research on encrypted traffic classification based on machine learning

Flow-based electronic resource network behavior analysis practice

Survey of industrial Internet traffic analysis technology

Botnet detection based on generative adversarial network

Port scan detection algorithms based on statistical traffic features

Related Author

Yu Yihan

WANG Kun

LIU Taotao

FU Yu

WEI Yujun

YAO Renlong

ZHAO Qiong

LI Enlei

Related Institution

Department of Information Security, Naval University of Engineering

School of Mathematics and Information Engineering, Xinyang Vocational and Technical College

Department of Operational Operations and Planning, Naval University of Engineering

Institute of Information Engineering, Chinese Academy of Sciences

School of Cyber Security, University of Chinese Academy of Sciences

AI问答

⁰