Crypto-ransomware detection using machine learning models in file-sharing network scenarios with encrypted traffic

作者：

Highlights：

• Crypto-ransomware can be detected based on file-sharing traffic.

• Neural networks using three hidden layers are an effective detection model.

• Commands opening and closing files differentiate ransomware from benign activity.

• All traffic traces and trained models are publicly available.

摘要

•Crypto-ransomware can be detected based on file-sharing traffic.•Neural networks using three hidden layers are an effective detection model.•Commands opening and closing files differentiate ransomware from benign activity.•All traffic traces and trained models are publicly available.

论文关键词：Crypto-ransomware,File-sharing traffic,Network security

论文评审过程：Received 17 February 2022, Revised 8 July 2022, Accepted 25 July 2022, Available online 30 July 2022, Version of Record 8 August 2022.

论文官网地址：https://doi.org/10.1016/j.eswa.2022.118299