Identifying Peer-to-Peer Botnets Through Periodicity Behavior Analysis

机译：通过周期性行为分析识别对等僵尸网络

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Peer-to-Peer botnets have become one of the significant threat against network security due to their distributed properties. The decentralized nature makes their detection challenging. It is important to take measures to detect bots as soon as possible to minimize their harm. In this paper, we propose PeerGrep, a novel system capable of identifying P2P bots. PeerGrep starts from identifying hosts that are likely engaged in P2P communications, and then distinguishes P2P bots from P2P hosts by analyzing their active ratio, packet size and the periodicity of connection to destination IP addresses. The evaluation shows that PeerGrep can identify all P2P bots with quite low FPR even if the malicious P2P application and benign P2P application coexist within the same host or there is only one bot in the monitored network.

机译：对等僵尸网络由于其分布式属性而已成为严重威胁网络安全的威胁之一。分散的性质使其检测具有挑战性。重要的是要采取措施尽快检测机器人，以最大程度地减少它们的危害。在本文中，我们提出了PeerGrep，这是一种能够识别P2P机器人的新颖系统。 PeerGrep从识别可能参与P2P通信的主机开始，然后通过分析它们的活动率，数据包大小以及与目标IP地址的连接周期来区分P2P僵尸程序与P2P主机。评估显示，即使恶意P2P应用程序和良性P2P应用程序共存于同一主机中，或者受监控的网络中只有一个机器人，PeerGrep仍可以识别FPR较低的所有P2P机器人。

著录项

来源
《2018 17th IEEE International Conference on Trust, Security and Privacy In Computing and Communications, 12th IEEE International Conference on Big Data Science and Engineering》|2018年|283-288|共6页
会议地点 New York(US)
作者
Pengfei Wang; Fengyu Wang; Fengbo Lin; Zhenzhong Cao;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种 eng
中图分类
关键词
Peer-to-peer computing; Botnet; Monitoring; Security; IP networks; Feature extraction; Conferences;

机译：对等计算;僵尸网络;监控;安全性; IP网络;特征提取;会议;;

相似文献

外文文献
中文文献
专利

1. Enhanced PeerHunter: Detecting Peer-to-Peer Botnets Through Network-Flow Level Community Behavior Analysis [J] . Zhuang Di, Chang J. Morris IEEE transactions on information forensics and security . 2019,第6期

机译：增强的PeerHunter：通过网络流级别社区行为分析检测对等僵尸网络
2. Modeling and analysis of peer-to-peer botnets [J] . Feng L., Liao X., Han Q., Discrete dynamics in nature and society . 2012,第Pta3期

机译：对等僵尸网络的建模和分析
3. Modeling and Analysis of Peer-to-Peer Botnets [J] . LipingFeng, XiaofengLiao, QiHan, Discrete dynamics in nature and society . 2012,第4期

机译：对等僵尸网络的建模与分析
4. Identifying Peer-to-Peer Botnets Through Periodicity Behavior Analysis [C] . Pengfei Wang, Fengyu Wang, Fengbo Lin, IEEE International Conference on Big Data Science and Engineering . 2018

机译：通过周期性行为分析识别点对点僵尸网络
5. Botnets analysis and detection methods based on network behavior. [D] . Al-Bataineh, Areej. 2012

机译：基于网络行为的僵尸网络分析和检测方法。
6. SMARTbot: A Behavioral Analysis Framework Augmented with Machine Learning to Identify Mobile Botnet Applications [O] . Ahmad Karim, Rosli Salleh, Muhammad Khurram Khan -1

机译：SMARTbot：行为分析框架结合了机器学习可识别移动僵尸网络应用程序
7. A Comprehensive Analysis on Current Botnet Weaknesses and Improving the Security Performance on Botnet Monitoring and Detection in Peer-to-Peer Botnet [O] . Sivakumar Kalimuthu, Kannan Ponkoodanlingam, Premylla Jeremiah, 2016

机译：当前僵尸网络弱点的综合分析，对等僵尸网络僵局监控和检测安全性能
8. Identifying the Circadian Cycle in Human Information Processing Data Using Periodicity Analysis: A Synopsis. [R] . Damos, D. L. 1989

机译：使用周期性分析识别人类信息处理数据中的昼夜循环：概要。

Identifying Peer-to-Peer Botnets Through Periodicity Behavior Analysis

摘要

著录项

相似文献

相关主题

期刊订阅