Applying Process Mining Techniques to DNS Traces Analysis

Bustos-Jiménez, Javier; Saint-Pierre Cortés, Cecilia; Graves, Alavaro

Applying Process Mining Techniques to DNS Traces Analysis

Files

Applying Process Mining Techniques to DNS Traces Analysis.pdf(2.54 KB)

Date

2014

Authors

Bustos-Jiménez, Javier

Saint-Pierre Cortés, Cecilia

Graves, Alavaro

Publisher

IEEE

Abstract

One of the key technologies on the Internet is the DNS protocol. While many studies have taken a statistical approach, the representation of DNS traces as a graph has not received enough attention. In this position paper we present our work of applying Process Mining (PM) techniques to study DNS traffic. Process Mining has been successfully used to understand processes on the enterprise as part of Business Process Management (BPM) analysis tools and techniques. Applying PM techniques allow us discovering unexpected behaviors in DNS operations such as spam botnet attacks. We show examples of the studies performed by our group and we also present new ideas for future work.

Keywords

Servers, Data mining, Internet, Algorithm design and analysis, Protocols, Business, IP networks

URI

https://doi.org/10.1109/SCCC.2014.9
https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=7559664
https://repositorio.uc.cl/handle/11534/64046

Collections

Artículos de conferencia

Full item page