Article

A Proposal of Metrics for Botnet Detection Based on Its Cooperative Behavior

Authors:

Suguru YamaguchiAuthors Info & Claims

SAINT-W '07: Proceedings of the 2007 International Symposium on Applications and the Internet Workshops

Page 82

https://doi.org/10.1109/SAINT-W.2007.14

Published: 15 January 2007 Publication History

Publisher Site

Abstract

In this paper, we propose three metrics for detecting botnets through analyzing their behavior. Our social infrastructure (i.e., the Internet) is currently experiencing the danger of bots' malicious activities as the scale of botnets increases. Although it is imperative to detect botnet to help protect computers from attacks, effective metrics for botnet detection have not been adequately researched. In this work we measure enormous amounts of traffic passing through the Asian Internet Interconnection Initiatives (AIII) infrastructure. To validate the effectiveness of our proposed metrics, we analyze measured traffic in three experiments. The experimental results reveal that our metrics are applicable for detecting botnets, but further research is needed to refine their performance.

Cited By

View all

Kanehara HMurakami YShimamura JTakahashi TInoue DMurata NHung CPapadopoulos G(2019)Real-time botnet detection using nonnegative tucker decompositionProceedings of the 34th ACM/SIGAPP Symposium on Applied Computing10.1145/3297280.3297415(1337-1344)Online publication date: 8-Apr-2019
https://dl.acm.org/doi/10.1145/3297280.3297415
Chen CLin H(2015)Detecting botnet by anomalous trafficJournal of Information Security and Applications10.1016/j.jisa.2014.05.00221:C(42-51)Online publication date: 1-Apr-2015
https://dl.acm.org/doi/10.1016/j.jisa.2014.05.002
Thakur MKhilnani DGupta KJain SAgarwal VSane SSanyal SDhekne P(2012)Detection and prevention of botnets and malware in an enterprise networkInternational Journal of Wireless and Mobile Computing10.1504/IJWMC.2012.0467765:2(144-153)Online publication date: 1-May-2012
https://dl.acm.org/doi/10.1504/IJWMC.2012.046776
Show More Cited By

Index Terms

A Proposal of Metrics for Botnet Detection Based on Its Cooperative Behavior

Recommendations

Group Behavior Metrics for P2P Botnet Detection
Information and Communications Security
Abstract
Botnet is becoming the biggest threat to the integrity of Internet and its resources. The advent of P2P botnets has made detection and prevention of botnets very difficult. In this paper, we propose a set of metrics for efficient botnet detection. ...
Classification of Botnet Detection Based on Botnet Architechture
CSNT '12: Proceedings of the 2012 International Conference on Communication Systems and Network Technologies

Nowadays, Botnets pose a major threat to the security of online ecosystems and computing assets. A Botnet is a network of computers which are compromised under the influence of Bot (malware) code. This paper clarifies Botnet phenomenon and discusses ...
A Survey of Botnet and Botnet Detection
SECURWARE '09: Proceedings of the 2009 Third International Conference on Emerging Security Information, Systems and Technologies

Among the various forms of malware, botnets are emerging as the most serious threat against cyber-security as they provide a distributed platform for several illegal activities such as launching distributed denial of service attacks against critical ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

SAINT-W '07: Proceedings of the 2007 International Symposium on Applications and the Internet Workshops

January 2007

ISBN:0769527574

Publisher

IEEE Computer Society

United States

Publication History

Published: 15 January 2007

Qualifiers

Article

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

14
Total Citations
View Citations
0
Total Downloads

Downloads (Last 12 months)0
Downloads (Last 6 weeks)0

Reflects downloads up to 06 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

View all

Kanehara HMurakami YShimamura JTakahashi TInoue DMurata NHung CPapadopoulos G(2019)Real-time botnet detection using nonnegative tucker decompositionProceedings of the 34th ACM/SIGAPP Symposium on Applied Computing10.1145/3297280.3297415(1337-1344)Online publication date: 8-Apr-2019
https://dl.acm.org/doi/10.1145/3297280.3297415
Chen CLin H(2015)Detecting botnet by anomalous trafficJournal of Information Security and Applications10.1016/j.jisa.2014.05.00221:C(42-51)Online publication date: 1-Apr-2015
https://dl.acm.org/doi/10.1016/j.jisa.2014.05.002
Thakur MKhilnani DGupta KJain SAgarwal VSane SSanyal SDhekne P(2012)Detection and prevention of botnets and malware in an enterprise networkInternational Journal of Wireless and Mobile Computing10.1504/IJWMC.2012.0467765:2(144-153)Online publication date: 1-May-2012
https://dl.acm.org/doi/10.1504/IJWMC.2012.046776
Zhao SLee PLui JGuan XMa XTao JZakon R(2012)Cloud-based push-styled mobile botnetsProceedings of the 28th Annual Computer Security Applications Conference10.1145/2420950.2420968(119-128)Online publication date: 3-Dec-2012
https://dl.acm.org/doi/10.1145/2420950.2420968
Mendonça LSantos HGaur MElçi AMakarevich OOrgun MSingh V(2012)BotnetsProceedings of the Fifth International Conference on Security of Information and Networks10.1145/2388576.2388580(33-40)Online publication date: 25-Oct-2012
https://dl.acm.org/doi/10.1145/2388576.2388580
Yamauchi SKawakita MTakeuchi J(2012)Botnet detection based on non-negative matrix factorization and the MDL principleProceedings of the 19th international conference on Neural Information Processing - Volume Part V10.1007/978-3-642-34500-5_48(400-409)Online publication date: 12-Nov-2012
https://dl.acm.org/doi/10.1007/978-3-642-34500-5_48
Kotenko IKonovalov AShorov A(2012)Agent-based simulation of cooperative defence against botnetsConcurrency and Computation: Practice & Experience10.1002/cpe.185824:6(573-588)Online publication date: 1-Apr-2012
https://dl.acm.org/doi/10.1002/cpe.1858
Lu WRammidi GGhorbani A(2011)Clustering botnet communication traffic based on n-gram feature selectionComputer Communications10.1016/j.comcom.2010.04.00734:3(502-514)Online publication date: 1-Mar-2011
https://dl.acm.org/doi/10.1016/j.comcom.2010.04.007
Liu JXiao YGhaboosi KDeng HZhang J(2009)BotnetEURASIP Journal on Wireless Communications and Networking10.1155/2009/6926542009(1-11)Online publication date: 1-Feb-2009
https://dl.acm.org/doi/10.1155/2009/692654
Lu WTavallaee MGhorbani ALi WSusilo WTupakula USafavi-Naini RVaradharajan V(2009)Automatic discovery of botnet communities on large-scale communication networksProceedings of the 4th International Symposium on Information, Computer, and Communications Security10.1145/1533057.1533062(1-10)Online publication date: 10-Mar-2009
https://dl.acm.org/doi/10.1145/1533057.1533062
Show More Cited By

Abstract

Cited By

Index Terms

Recommendations

Group Behavior Metrics for P2P Botnet Detection

Classification of Botnet Detection Based on Botnet Architechture

A Survey of Botnet and Botnet Detection

Comments

Information

Published In

Publisher

Publication History

Qualifiers

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations