A data infrastructure for heterogeneous telemetry adaptation: application to Netflow-based cryptojacking detection

【Author】 Moreno-Sancho, Alejandro A.; Pastor, Antonio; Martinez-Casanueva, Ignacio D.; Gonzalez-Sanchez, Daniel; Triana, Luis Bellido

【Source】ANNALS OF TELECOMMUNICATIONS

【影响因子】1.901

【Abstract】The increasing development of cryptocurrencies has brought cryptojacking as a new security threat in which attackers steal computing resources for cryptomining. The digitization of the supply chain is a potential major target for cryptojacking due to the large number of different infrastructures involved. These different infrastructures provide information sources that can be useful to detect cryptojacking, but with a wide variety of data formats and encodings. This paper describes the semantic data aggregator (SDA), a normalization and aggregation system based on data modelling and low-latency processing of data streams that facilitates the integration of heterogeneous information sources. As a use case, the paper describes a cryptomining detection system (CDS) based on network traffic flows processed by a machine learning engine. The results show how the SDA is leveraged in this use case to obtain aggregated information that improves the performance of the CDS.

【Keywords】Netflow; YANG; Data modelling; Data normalization; Data aggregation; Supply chain; Cryptojacking

【发表时间】2023 2023 OCT 3

【收录时间】2023-10-12

【文献类型】实验仿真

【主题类别】

区块链治理-技术治理-加密劫持检测