DocumentCode :
3466085
Title :
Detecting Botnets in Computer Networks Using Multi-agent Technology
Author :
Szymczyk, Miroslaw
Author_Institution :
Inst. of Comput. Eng., Control & Robot., Wroclaw Univ. of Technol., Wroclaw, Poland
fYear :
2009
fDate :
June 30 2009-July 2 2009
Firstpage :
192
Lastpage :
201
Abstract :
The paper presents a hybrid model of the bots detector which is a combination of host intrusion detection system and the operating system event log analyzer. Bot can be defined as a computer that have been attacked by a hacker or infected with malicious software and is used for illegal activities. Collections of infected computers form a botnet. The proposed system is used to detect bots based on the evaluation of events occurring in the operating system and network environment. Detection algorithms based on the signatures derived from the analysis of the various types of malicious software that creates bots. The model has been implemented using multi-agent technology.
Keywords :
multi-agent systems; operating systems (computers); security of data; botnets detection; bots detector; computer networks; illegal activities; intrusion detection system; malicious software; multiagent technology; operating system event log analyzer; Computer networks;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Dependability of Computer Systems, 2009. DepCos-RELCOMEX '09. Fourth International Conference on
Conference_Location :
Brunow
Print_ISBN :
978-0-7695-3674-3
Type :
conf
DOI :
10.1109/DepCoS-RELCOMEX.2009.46
Filename :
5261007
Link To Document :
بازگشت