Title :
A P2P-Botnet detection model and algorithms based on network streams analysis
Author :
Liu, Dan ; Li, Yichao ; Hu, Yue ; Liang, Zongwen
Author_Institution :
Electron. Sci. & Technol. Inst., Univ. of Electron. Sci. & Technol. of China, Chengdu, China
Abstract :
Aimed at the situation that it is difficult to detect the peer-to-peer (P2P) botnet, we provide a new method for detection based on the analysis network streams. Firstly, because the P2P streams reveal the characteristics of paroxysm and distribution, we can filtrate them with streams feature for our targets to analyze. Then, according to the cohesion in a P2P network, we can figure out the set of peers in a P2P network. Finally, by contrasting with the common botnet actions of the peers in a P2P network, we can distinguish a P2P-Botnet from the P2P networks. Besides all, plenty of experiments have been done and proved the efficiency and veracity of this method.
Keywords :
Internet; computer network security; peer-to-peer computing; P2P network; P2P streams; network streams analysis; paroxysm characteristics; peer-to-peer-botnet detection model; Artificial neural networks; Clustering algorithms; Cryptography; Peer to peer computing; Storms; Botnet; P2P network; clustering; data stream;
Conference_Titel :
Future Information Technology and Management Engineering (FITME), 2010 International Conference on
Conference_Location :
Changzhou
Print_ISBN :
978-1-4244-9087-5
DOI :
10.1109/FITME.2010.5655788
