Title :
BLOBOT: BLOcking BOTs at the Doorstep
Author :
Dini, Gianluca ; La Porta, I.S.
Author_Institution :
Dept. Oflngegneria dell´´Inf.: Elettron., Telecomun.-Univ. of Pisa, Pisa, Italy
Abstract :
In this paper we present BLOBOT, a tool for detecting botnets. BLOBOT detects botnets by detecting their command and control network. In contrast to common approaches that operate, often off-line, on aggregate network traffic, BLOBOT operates on a single user´s traffic so increasing the ability of detecting botnets in real-time. Blobot features a tradeoff between usability, security and efficiency. Preliminary experimental results prove that BLOBOT is an effective tool against botnets.
Keywords :
Internet; security of data; BLOBOT; botnet detection tool; command and control network; network security; network traffic; Command and control systems; Communication system traffic control; Computer networks; Home computing; Internet; Microcomputers; Monitoring; Protocols; Telecommunication traffic; Usability; Bot; Profiling; Security;
Conference_Titel :
Computing in the Global Information Technology, 2009. ICCGI '09. Fourth International Multi-Conference on
Conference_Location :
Cannes, La Bocca
Print_ISBN :
978-1-4244-4680-3
Electronic_ISBN :
978-0-7695-3751-1
DOI :
10.1109/ICCGI.2009.34
