Title :
Exploring a swarm intelligence methodology to identify command and control flow
Author :
Zhang, Yan ; Wang, Y. ; Qi, L.
Author_Institution :
Electron. Eng. Inst., Hefei, China
Abstract :
Botnet poses a significant threat to the Internet today. Reactive techniques that try to detect such an attack and throttle down malicious traffic prevail today but seem not to be very effective. In this paper we present an approach to Botnet detection that is based on the methodology of swarm intelligence. Specifically, particle swarm optimization, a robust stochastic evolutionary algorithm based on the movement and intelligence of swarms, is applied to track the remote controls activities, namely C&C. There exist in literature a few papers in which PSO is used to face the optimization problem. However, no paper exists showing the effectiveness of PSO on this problem. Therefore, PSO is examined in this paper to face the identification of C&C flow. Comparing with other classification techniques, PSO performs a high accuracy.
Keywords :
Internet; evolutionary computation; particle swarm optimisation; Internet; botnet detection; command and control flow; particle swarm optimization; remote control activity; robust stochastic evolutionary algorithm; swarm intelligence; Analytical models; Computational modeling; Cryptography; USA Councils;
Conference_Titel :
Advanced Computational Intelligence (IWACI), 2010 Third International Workshop on
Conference_Location :
Suzhou, Jiangsu
Print_ISBN :
978-1-4244-6334-3
DOI :
10.1109/IWACI.2010.5585182
