• DocumentCode
    712949
  • Title

    Botnet detection using software defined networking

  • Author

    Wijesinghe, Udaya ; Tupakula, Udaya ; Varadharajan, Vijay

  • Author_Institution
    Adv. Cyber Security Res. Centre, Macquarie Univ., Sydney, NSW, Australia
  • fYear
    2015
  • fDate
    27-29 April 2015
  • Firstpage
    219
  • Lastpage
    224
  • Abstract
    Software Defined Networking (SDN) is considered as a new approach promising simplified network management by providing a programmable interface. The idea of SDN is based on the separation of control plane from the data plane in networking devices. This is achieved by having the network intelligence centralised in what is called as SDN controller. In this paper we propose techniques for botnet detection in networks using SDN. The SDN controller makes use of generic templates for capturing the traffic flow information from the OpenFlow switches and makes use of this information for detecting bots. We will show that our model can detect a range of bots including IRC, HTTP and peer-to-peer bots.
  • Keywords
    computer network management; invasive software; peer-to-peer computing; software defined networking; telecommunication traffic; transport protocols; HTTP bots; IRC bots; OpenFlow switches; SDN controller; botnet detection; control plane; data plane; network intelligence; network management; networking devices; peer-to-peer bots; programmable interface; software defined networking; traffic flow information; Control systems; Engines; Feature extraction; Filtering; IP networks; Peer-to-peer computing; Protocols; Botnet; IPFIX; SDN;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Telecommunications (ICT), 2015 22nd International Conference on
  • Conference_Location
    Sydney, NSW
  • Type

    conf

  • DOI
    10.1109/ICT.2015.7124686
  • Filename
    7124686
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=712949