Title :
NSF: Network-Based Spam Filtering Based on On-Line Blacklisting against Spamming Botnets
Author :
Kim, Byungseung ; Kim, Hyogon ; Bahk, Saewoong
Author_Institution :
Samsung Electron. Co., Ltd., Suwon, South Korea
Abstract :
Although many anti-spam techniques have been developed, they have difficulty in detecting spams whose contents are altered to evade detection and in tracking spammers that are comprised of botnets. There have been a few works to resolve these limitations, but most of them are not appropriate to be deployed at a gateway for online detection. In this paper, we find network-based characteristics that spammers cannot easily distort. Based on the characteristics, we develop an algorithm applying the metrics to a large volume of traffic in real time. The scheme is efficient enough to run at the ingress point as it only needs to inspect the transport information contained in TCP/IP headers of SMTP connections.
Keywords :
security of data; unsolicited e-mail; TCP/IP headers; network-based spam filtering; online blacklisting; spamming botnets; Domain Name System; Electronic mail; Encoding; Information filtering; Information filters; Joining processes; Postal services; TCPIP; Telecommunication traffic; Unsolicited electronic mail;
Conference_Titel :
Global Telecommunications Conference, 2009. GLOBECOM 2009. IEEE
Conference_Location :
Honolulu, HI
Print_ISBN :
978-1-4244-4148-8
DOI :
10.1109/GLOCOM.2009.5425683
