Cyber Security: 19th China Annual Conference, CNCERT 2022, Beijing, China, August 16–17, 2022, Revised Selected Papers PDF
Preview Cyber Security: 19th China Annual Conference, CNCERT 2022, Beijing, China, August 16–17, 2022, Revised Selected Papers
Wei Lu · Yuqing Zhang · Weiping Wen · Hanbing Yan · Chao Li (Eds.) Communications in Computer and Information Science 1699 Cyber Security 19th China Annual Conference, CNCERT 2022 Beijing, China, August 16–17, 2022 Revised Selected Papers Communications in Computer and Information Science 1699 EditorialBoardMembers JoaquimFilipe PolytechnicInstituteofSetúbal,Setúbal,Portugal AshishGhosh IndianStatisticalInstitute,Kolkata,India RaquelOliveiraPrates FederalUniversityofMinasGerais(UFMG),BeloHorizonte,Brazil LizhuZhou TsinghuaUniversity,Beijing,China Moreinformationaboutthisseriesathttps://link.springer.com/bookseries/7899 · · · Wei Lu Yuqing Zhang Weiping Wen · Hanbing Yan Chao Li (Eds.) Cyber Security 19th China Annual Conference, CNCERT 2022 Beijing, China, August 16–17, 2022 Revised Selected Papers Editors WeiLu YuqingZhang CNCERT UniversityofChineseAcademyofSciences Beijing,China Beijing,China WeipingWen HanbingYan PekingUniversity CNCERT Beijing,China Beijing,China ChaoLi CNCERT Beijing,China ISSN 1865-0929 ISSN 1865-0937 (electronic) CommunicationsinComputerandInformationScience ISBN 978-981-19-8284-2 ISBN 978-981-19-8285-9 (eBook) https://doi.org/10.1007/978-981-19-8285-9 ©TheEditor(s)(ifapplicable)andTheAuthor(s)2022.Thisbookisanopenaccesspublication. OpenAccessThisbookislicensedunderthetermsoftheCreativeCommonsAttribution4.0International License(http://creativecommons.org/licenses/by/4.0/),whichpermitsuse,sharing,adaptation,distribution andreproductioninanymediumorformat,aslongasyougiveappropriatecredittotheoriginalauthor(s)and thesource,providealinktotheCreativeCommonslicenseandindicateifchangesweremade. Theimagesorotherthirdpartymaterialinthisbookareincludedinthebook’sCreativeCommonslicense, unlessindicatedotherwiseinacreditlinetothematerial.Ifmaterialisnotincludedinthebook’sCreative Commonslicenseandyourintendeduseisnotpermittedbystatutoryregulationorexceedsthepermitteduse, youwillneedtoobtainpermissiondirectlyfromthecopyrightholder. Theuseofgeneraldescriptivenames,registerednames,trademarks,servicemarks,etc.inthispublication doesnotimply,evenintheabsenceofaspecificstatement,thatsuchnamesareexemptfromtherelevant protectivelawsandregulationsandthereforefreeforgeneraluse. Thepublisher,theauthors,andtheeditorsaresafetoassumethattheadviceandinformationinthisbookare believedtobetrueandaccurateatthedateofpublication.Neitherthepublishernortheauthorsortheeditors give a warranty, expressed or implied, with respect to the material contained herein or for any errors or omissionsthatmayhavebeenmade.Thepublisherremainsneutralwithregardtojurisdictionalclaimsin publishedmapsandinstitutionalaffiliations. ThisSpringerimprintispublishedbytheregisteredcompanySpringerNatureSingaporePteLtd. Theregisteredcompanyaddressis:152BeachRoad,#21-01/04GatewayEast,Singapore189721,Singapore Preface TheChinaCyberSecurityAnnualConferenceistheannualeventoftheNationalCom- puter Network Emergency Response Technical Team/Coordination Center of China (hereinafter referred to as CNCERT/CC). Since 2004, CNCERT/CC has successfully held18ChinaCyberSecurityAnnualConferences.Asanimportantbridgefortechnical and service exchange on cyber security affairs among industry, academics, and prac- titioners, the conference has played an active role in safeguarding cyber security and raisingsocialawareness. FoundedinAugust2001,CNCERT/CCisanon-governmentalnon-profitcybersecu- ritytechnicalcenterandthekeycoordinationteamforChina’scybersecurityemergency responsecommunity.AsthenationalCERTofChina,CNCERT/CCstrivestoimprove the nation’s cyber security posture and safeguard the security of critical information infrastructure.CNCERT/CCleadseffortstoprevent,detect,alert,coordinate,andhan- dlecybersecuritythreatsandincidents,inlinewiththeguidingprincipleof“proactive prevention,timelydetection,promptresponse,andmaximizedrecovery”. Thisyear,theChinaCyberSecurityAnnualConferencewasheldonlinefromAugust 16to17,2022,onthethemeof“JointlySafeguardingDigitalInformationInfrastructure” asthe19theventintheseries.Theconferencefeaturedonemainsessionandsixsub- sessions. The mission was not only to provide a platform for sharing new emerging trendsandconcernsoncybersecurity,anddiscussingcountermeasuresorapproachesto dealwiththem,butalsotofindwaystojoinhandsinmanagingthreatsandchallenges todigitalinformationinfrastructure.Therewereover5.8millionvisitsreceivedtoour onlineevent.PleaserefertothefollowingURLformoreinformation:http://conf.cert. org.cn. Weannouncedourcallforpapersonourofficialwebsite,afterwhich64submissions werereceivedbythedeadlinefromauthorswithawiderangeofaffiliations,including universities,researchinstitutions,telecomoperators,companies,financialinstitutions, andNGOs.Afterreceivingallsubmissions,werandomlyassignedeveryreviewerwith fivepapers,andeverypaperwasreviewedbythreereviewersinasingleblindmanner. All submissions were assessed based on their credibility of innovation, contribution, referencevalue,significanceofresearch,languagequality,andoriginality.Weadopted a thorough and competitive reviewing and selection process which took place in two rounds. In the first round we invited the reviewers to conduct an initial review. Based onthecomments received, 34papers passedand theauthors of these34pre-accepted papersmademodificationsaccordingly.Inthesecondroundthemodifiedpaperswere reviewedagain.Finally,17outofthetotal64submissionsstoodoutandwereaccepted. Theacceptanceratewas26.56%. The17paperscontainedinthisproceedingscoverawiderangeofcyber-relatedtop- ics,includingnetworkintrusiondetection,cloudnetwork,datasecurity,cryptocurrency, vulnerabilities, mobile Internet security, threat intelligence, and webpage tempering detectionetc. vi Preface Weherebywouldliketosincerelythankalltheauthorsfortheirparticipation,andour thanksalsogototheProgramCommitteefortheirconsiderableeffortsanddedication inhelpingussolicitandselectthepapersofqualityandcreativity. Lastly,wehumblyhopethisproceedingsofCNCERT2022willshedsomelightfor allreadersintheirforthcomingresearchandexplorationoftheirrespectivefields. October2022 WeiLu YuqingZhang WeipingWen HanbingYan ChaoLi Organization GeneralChair WeiLu CNCERT/CC,China OrganizingChair HanbingYan CNCERT/CC,China PublicationsChairs YuqingZhang UniversityofChineseAcademyofSciences, China WeipingWen PekingUniversity,China ChaoLi CNCERT/CC,China ProgramCommitteeChairs WeiLu CNCERT/CC,China HanbingYan CNCERT/CC,China ProgramCommittee HuaZhang BeijingUniversityofPostsand Telecommunications,China PuruiSu InstituteofSoftware,ChineseAcademyof Sciences,China HuaxiongWang NanyangTechnologicalUniversity,Singapore HaixinDuan TsinghuaUniversity,China BaoxuLiu InstituteofInformationEngineering,Chinese AcademyofSciences,China JiangMing UniversityofTexasatArlington,USA KuiRen ZhejiangUniversity,China ChunhuaSu UniversityofAizu,Japan XinguangXiao AntiyLabs,China FeifeiLi StanfordUniversity,USA MichaelBackesa SaarlandUniversityandCISPA-StanfordCenter forCybersecurity,Germany ZhenkaiLiang NationalUniversityofSingapore,Singapore viii Organization MinYang FudanUniversity,China XinhuiHan PekingUniversity,China BoLang BeihangUniversity,China ChristopherKruegel UniversityofCalifornia,USA YangZhang CISPAHelmholtzCenterforInformation Security,Germany GuoaiXu BeijingUniversityofPostsand Telecommunications,China StevensLeBlond MaxPlanckInstituteforSoftwareSystems, Germany SiriBromander UniversityofOslo,Norway ChaoZhang TsinghuaUniversity,China ZoubinGhahramani UniversityofCambridge,UK GuojunPeng WuhanUniversity,China DawnSong UniversityofCalifornia,Berkeley,USA KangjieLu UniversityofMinnesota,USA XueyingLi Topsec,China YanivDavid Technion,Israel SenlinLuo BeijingInstituteofTechnology,China MengXu GeorgiaInstituteofTechnology,USA WenlingWu InstituteofSoftware,ChineseAcademyof Sciences,China ChaoLi CNCERT/CC,China LiDing CNCERT/CC,China HuapingCao CNCERT/CC,China RuiguangLi CNCERT/CC,China YuZhou CNCERT/CC,China Contents DataSecurity AnIntelligentDataFlowSecurityStrategyModelofCloud-Network Integration ........................................................... 3 NishuiCai,ZhuxiangDeng,andHaoWang ApplyingaRandomForestApproachtoImbalancedDatasetonNetwork MonitoringAnalysis ................................................... 28 QianChen,XingZhang,YingWang,ZhijiaZhai,andFenYang BriefAnalysisforNetworkSecurityIssuesinMega-ProjectsApproved forDataClusters ...................................................... 38 ShizhanLanandJingHuang ConsiderationsonEvaluationofPracticalCloudDataProtection ............. 51 RuiMei,Han-BingYan,YongqiangHe,QinqinWang,ShengqiangZhu, andWeipingWen AnomalyDetection ASelf-supervisedAdversarialLearningApproachforNetworkIntrusion DetectionSystem ...................................................... 73 LiruiDeng,YoujianZhao,andHengBao AnomalyDetectionofE-commerceEconnoisseurBasedonUserBehavior .... 86 YangyuLong,WeiZhao,JilongYang,JinchengDeng,andFangmingLiu CMPD:Context-BasedMaliciousParameterDetectionforAPIs .............. 99 ZhangjieZhao,LinZhang,XingZhang,YingWang,andYiQin WebpageTamperingDetectionMethodBasedonBiGRU-CRF-RCNN ........ 113 XiangyuFan,JilongYang,WeiZhao,JinchengDeng,andFangmingLiu Cryptocurrency DetectingBitcoinNodesbytheCyberspaceSearchEngines ................. 129 RuiguangLi, JiaweiZhu, JiaqiGao, FudongWu, DaweiXu, andLiehuangZhu
The list of books you might like
