DGA malicious domain name identification based on XGBoost and particle swarm optimization algorithm
Domain generation algorithms (DGA) have become a common method of network attacks. To enhance the detection capability for DGA malicious domains, a method for malicious domain identification based on XGBoost and particle swarm optimization (PSO) algorithms was proposed. Firstly, using cross-validati...
Saved in:
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | zho |
| Published: |
Editorial Department of Journal on Communications
2024-11-01
|
| Series: | Tongxin xuebao |
| Subjects: | |
| Online Access: | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2024237/ |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1841537101271662592 |
|---|---|
| author | CHEN Zesheng ZHOU Min FENG Lichun CHEN Weijie |
| author_facet | CHEN Zesheng ZHOU Min FENG Lichun CHEN Weijie |
| author_sort | CHEN Zesheng |
| collection | DOAJ |
| description | Domain generation algorithms (DGA) have become a common method of network attacks. To enhance the detection capability for DGA malicious domains, a method for malicious domain identification based on XGBoost and particle swarm optimization (PSO) algorithms was proposed. Firstly, using cross-validation accuracy as the evaluation metric, the PSO algorithm was employed to optimize the hyperparameters of XGBoost, followed by classification and identification using XGBoost. Experimental results demonstrate that the XGBoost model optimized by PSO exhibits improved performance in DGA malicious domain classification. Compared to other classification models, it achieves better results in metrics such as accuracy, precision, recall, and F1_score. The study indicates that integrating PSO for parameter selection effectively enhances the performance of XGBoost in DGA malicious domain identification tasks. |
| format | Article |
| id | doaj-art-969960f564914207b2b39d8629fbfad1 |
| institution | Kabale University |
| issn | 1000-436X |
| language | zho |
| publishDate | 2024-11-01 |
| publisher | Editorial Department of Journal on Communications |
| record_format | Article |
| series | Tongxin xuebao |
| spelling | doaj-art-969960f564914207b2b39d8629fbfad12025-01-14T08:46:37ZzhoEditorial Department of Journal on CommunicationsTongxin xuebao1000-436X2024-11-0145273279661584DGA malicious domain name identification based on XGBoost and particle swarm optimization algorithmCHEN ZeshengZHOU MinFENG LichunCHEN WeijieDomain generation algorithms (DGA) have become a common method of network attacks. To enhance the detection capability for DGA malicious domains, a method for malicious domain identification based on XGBoost and particle swarm optimization (PSO) algorithms was proposed. Firstly, using cross-validation accuracy as the evaluation metric, the PSO algorithm was employed to optimize the hyperparameters of XGBoost, followed by classification and identification using XGBoost. Experimental results demonstrate that the XGBoost model optimized by PSO exhibits improved performance in DGA malicious domain classification. Compared to other classification models, it achieves better results in metrics such as accuracy, precision, recall, and F1_score. The study indicates that integrating PSO for parameter selection effectively enhances the performance of XGBoost in DGA malicious domain identification tasks.http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2024237/domain generation algorithmXGBoostparticle swarm optimizationfeature selection |
| spellingShingle | CHEN Zesheng ZHOU Min FENG Lichun CHEN Weijie DGA malicious domain name identification based on XGBoost and particle swarm optimization algorithm Tongxin xuebao domain generation algorithm XGBoost particle swarm optimization feature selection |
| title | DGA malicious domain name identification based on XGBoost and particle swarm optimization algorithm |
| title_full | DGA malicious domain name identification based on XGBoost and particle swarm optimization algorithm |
| title_fullStr | DGA malicious domain name identification based on XGBoost and particle swarm optimization algorithm |
| title_full_unstemmed | DGA malicious domain name identification based on XGBoost and particle swarm optimization algorithm |
| title_short | DGA malicious domain name identification based on XGBoost and particle swarm optimization algorithm |
| title_sort | dga malicious domain name identification based on xgboost and particle swarm optimization algorithm |
| topic | domain generation algorithm XGBoost particle swarm optimization feature selection |
| url | http://www.joconline.com.cn/zh/article/doi/10.11959/j.issn.1000-436x.2024237/ |
| work_keys_str_mv | AT chenzesheng dgamaliciousdomainnameidentificationbasedonxgboostandparticleswarmoptimizationalgorithm AT zhoumin dgamaliciousdomainnameidentificationbasedonxgboostandparticleswarmoptimizationalgorithm AT fenglichun dgamaliciousdomainnameidentificationbasedonxgboostandparticleswarmoptimizationalgorithm AT chenweijie dgamaliciousdomainnameidentificationbasedonxgboostandparticleswarmoptimizationalgorithm |