guest ::
| Home > Conference materials > Papers > A proposal of a method to detect spam from information messages |
Original title:
A proposal of a method to detect spam from information messages
Authors: Rickwood, M. ; Oujezský, V.
Document type: Papers
Language: eng
Publisher: Vysoké učení technické v Brně, Fakulta elektrotechniky a komunikačních technologií
Abstract: This paper presents a spam detection algorithm that uses solely traffic flow logs in the form of Netflow messages. Internet service providers must detect spam in order for their entire subnets not to be marked as spamming stations. The algorithm was drafted based on an analysis of various datasets containing Netflow records. These datasets consist of valid e-mails, spam and common non e-mail related traffic. The algorithm uses domain name system blacklist verification as the first step of identifying a spamming station. Furthermore, theoretical models of valid clients and spammers have been laid out. In continuation of this work, the dataset will be studied to find correlation with the models. Included in the tracked parameters one can find the number of incoming and outcoming messages, timestamps amongst others.
Keywords: Detection; e-mail; flow; security; spam
Host item entry: Proceedings I of the 28st Conference STUDENT EEICT 2022: General papers, ISBN 978-80-214-6029-4
Institution: Brno University of Technology (web)
Document availability information: Fulltext is available in the Brno University of Technology Digital Library.
Original record: http://hdl.handle.net/11012/209311
Permalink: http://www.nusl.cz/ntk/nusl-524738
The record appears in these collections:
Universities and colleges > Public universities > Brno University of Technology
Conference materials > Papers
Authors: Rickwood, M. ; Oujezský, V.
Document type: Papers
Language: eng
Publisher: Vysoké učení technické v Brně, Fakulta elektrotechniky a komunikačních technologií
Abstract: This paper presents a spam detection algorithm that uses solely traffic flow logs in the form of Netflow messages. Internet service providers must detect spam in order for their entire subnets not to be marked as spamming stations. The algorithm was drafted based on an analysis of various datasets containing Netflow records. These datasets consist of valid e-mails, spam and common non e-mail related traffic. The algorithm uses domain name system blacklist verification as the first step of identifying a spamming station. Furthermore, theoretical models of valid clients and spammers have been laid out. In continuation of this work, the dataset will be studied to find correlation with the models. Included in the tracked parameters one can find the number of incoming and outcoming messages, timestamps amongst others.
Keywords: Detection; e-mail; flow; security; spam
Host item entry: Proceedings I of the 28st Conference STUDENT EEICT 2022: General papers, ISBN 978-80-214-6029-4
Institution: Brno University of Technology (web)
Document availability information: Fulltext is available in the Brno University of Technology Digital Library.
Original record: http://hdl.handle.net/11012/209311
Permalink: http://www.nusl.cz/ntk/nusl-524738
The record appears in these collections:
Universities and colleges > Public universities > Brno University of Technology
Conference materials > Papers
Record created 2023-05-07, last modified 2023-05-07