63 0

Peer-to-Peer BotNet Traffic Analysis and Detection

Title
Peer-to-Peer BotNet Traffic Analysis and Detection
Author
임을규
Keywords
Botnet detection; Network Security; Peer-to-Peer (P2P) Botnet; Traffic Analysis
Issue Date
2012-04
Publisher
INT INFORMATION INST
Citation
INFORMATION-AN INTERNATIONAL INTERDISCIPLINARY JOURNAL; APR 2012, 15, 4, p1605-p1624
Abstract
One of the most serious threats against the Internet is attacks from botnets. The botnet amplifies the intensity of attacks through the cooperation of compromised hosts. Recently, some botnets have evolved into a decentralized structure like peer-to-peer (P2P) network. Without fixed C&C servers, P2P botnets are difficult to detect. In this paper, we proposed a multi-step P2P botnet detection system based on botnets' probing characteristics. The first step uses entropy of information theory to detect the compromised hosts with great performance, and the second step (duplication ratio) concentrates on decreasing false positives. The experiment results show better false positive rate than a previous system.
URI
https://search.proquest.com/openview/79bd95e797201fe6d2830d509b503573/1?pq-origsite=gscholar&cbl=936334http://repository.hanyang.ac.kr/handle/20.500.11754/70588
ISSN
1343-4500
Appears in Collections:
COLLEGE OF ENGINEERING[S](공과대학) > COMPUTER SCIENCE(컴퓨터소프트웨어학부) > Articles
Files in This Item:
There are no files associated with this item.
Export
RIS (EndNote)
XLS (Excel)
XML


qrcode

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.

BROWSE