• DocumentCode
    3109590
  • Title

    Detection of Mobile Botnet Using VPN

  • Author

    Byungha Choi ; Sung-Kyo Choi ; Kyungsan Cho

  • Author_Institution
    Grad. Sch., Dankook Univ., Yongin, South Korea
  • fYear
    2013
  • fDate
    3-5 July 2013
  • Firstpage
    142
  • Lastpage
    148
  • Abstract
    As most applications in wired networks become available on mobile devices and mobile networks are well integrated with Internet, Botnet becomes the most significant threat to mobile devices. We propose a mobile Botnet detection scheme that detects "pull" style C&C channel. Our network-based scheme detects Botnet by inspecting abnormal flow features of C&C traffic traveling through VPN which provides a shared path for both 3/4G and WiFi. Through the verification analysis under real Botnet attacks, we show that our proposed scheme provides high detection rate by using abnormal models as well as low FP rate by adding white list and signatures.
  • Keywords
    3G mobile communication; 4G mobile communication; Internet; computer network security; digital signatures; telecommunication traffic; virtual private networks; wireless LAN; 3G; 4G; C&C traffic abnormal flow features; Command and Control channel; FP rate; Internet; VPN; WiFi; abnormal models; mobile botnet detection scheme; mobile devices; mobile networks; network-based scheme; pull style C&C channel; signatures; white list; Feature extraction; IEEE 802.11 Standards; Mobile communication; Mobile computing; Mobile handsets; Servers; Virtual private networks; C&C channel; VPN; abnormal traffic model; detection; mobile Botnet;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Innovative Mobile and Internet Services in Ubiquitous Computing (IMIS), 2013 Seventh International Conference on
  • Conference_Location
    Taichung
  • Type

    conf

  • DOI
    10.1109/IMIS.2013.32
  • Filename
    6603663
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3109590