Detecting Web-Based Botnets Using Bot Communication Traffic Features

المؤلفون المشاركون

Hsu, Fu-Hau
Ou, Chih-Wen
Hwang, Yan-Ling
Chang, Ya-Ching
Lin, Po-Ching

المصدر

Security and Communication Networks

العدد

المجلد 2017، العدد 2017 (31 ديسمبر/كانون الأول 2017)، ص ص. 1-11، 11ص.

الناشر

Hindawi Publishing Corporation

تاريخ النشر

2017-12-03

دولة النشر

مصر

عدد الصفحات

11

التخصصات الرئيسية

تكنولوجيا المعلومات وعلم الحاسوب

الملخص EN

Web-based botnets are popular nowadays.

A Web-based botnet is a botnet whose C&C server and bots use HTTP protocol, the most universal and supported network protocol, to communicate with each other.

Because the botnet communication can be hidden easily by attackers behind the relatively massive HTTP traffic, administrators of network equipment, such as routers and switches, cannot block such suspicious traffic directly regardless of costs.

Based on the clients constituent of a Web server and characteristics of HTTP responses sent to clients from the server, this paper proposes a traffic inspection solution, called Web-based Botnet Detector (WBD).

WBD is able to detect suspicious C&C (Command-and-Control) servers of HTTP botnets regardless of whether the botnet commands are encrypted or hidden in normal Web pages.

More than 500 GB real network traces collected from 11 backbone routers are used to evaluate our method.

Experimental results show that the false positive rate of WBD is 0.42%.

نمط استشهاد جمعية علماء النفس الأمريكية (APA)

Hsu, Fu-Hau& Ou, Chih-Wen& Hwang, Yan-Ling& Chang, Ya-Ching& Lin, Po-Ching. 2017. Detecting Web-Based Botnets Using Bot Communication Traffic Features. Security and Communication Networks،Vol. 2017, no. 2017, pp.1-11.
https://search.emarefa.net/detail/BIM-1203009

نمط استشهاد الجمعية الأمريكية للغات الحديثة (MLA)

Hsu, Fu-Hau…[et al.]. Detecting Web-Based Botnets Using Bot Communication Traffic Features. Security and Communication Networks No. 2017 (2017), pp.1-11.
https://search.emarefa.net/detail/BIM-1203009

نمط استشهاد الجمعية الطبية الأمريكية (AMA)

Hsu, Fu-Hau& Ou, Chih-Wen& Hwang, Yan-Ling& Chang, Ya-Ching& Lin, Po-Ching. Detecting Web-Based Botnets Using Bot Communication Traffic Features. Security and Communication Networks. 2017. Vol. 2017, no. 2017, pp.1-11.
https://search.emarefa.net/detail/BIM-1203009

نوع البيانات

مقالات

لغة النص

الإنجليزية

الملاحظات

Includes bibliographical references

رقم السجل

BIM-1203009