The Aggregation and Stability Analysis of Network Traffic for Structured-P2P-based Botnet Detection

Free registration required

Executive Summary

Nowadays, botnets use Peer-to-Peer (P2P) networks for Command and Control (C&C) infrastructure. In contrast to traditional centralized-organized botnets, there is no central point of failure for structed-P2P-based botnets, which makes the botnets more concealable and robust and consequently degrades the botnet detection efficiency. In this paper, an efficient structured-P2P-based botnet detection strategy through the aggregation and stability analysis of network traffic is proposed. Considering that the flows related to the structured-P2P-based bot exhibit stability on statistical meaning due to the impartial position in botnet and performing pre-programmed control activities automatically,

  • Format: PDF
  • Size: 696.7 KB