Delay-Tolerant Botnets

Author

Chen, Zesheng ; Chen, Chao ; Wang, Qian

Author_Institution

Dept. of Electr. & Comput. Eng., Florida Int. Univ., Miami, FL, USA

fYear

2009

fDate

3-6 Aug. 2009

Firstpage

1

Lastpage

6

Abstract

Botnets have become one of top threats to the Internet. Many detection methods have been developed to distinguish botnet behaviors from normal human behaviors. Future botnets, however, may incorporate the characteristics of human beings and weaken the existing detection techniques. In this work, we study an intelligent botnet, called the delay-tolerant botnet, that intentionally adds random delays to the command propagation and endeavors to avoid the detection. We then apply mathematical analysis to derive the average delay required to distribute a command to all bots in three types of command and control architectures: centralized, distributed, and hybrid delay-tolerant botnets. We find that in all cases, the delay increases approximately logarithmically with the number of bots, indicating that the delay-tolerant botnets are scalable. Finally, we verify the analytical results by simulations.

Keywords

Internet; mathematical analysis; telecommunication security; Internet; delay-tolerant botnets; detection method; mathematical analysis; random delay; simulation; Chaos; Command and control systems; Computer crime; Delay lines; Exponential distribution; Humans; Internet; Mathematical analysis; Peer to peer computing; Propagation delay;

fLanguage

English

Publisher

ieee

Conference_Titel

Computer Communications and Networks, 2009. ICCCN 2009. Proceedings of 18th Internatonal Conference on

Conference_Location

San Francisco, CA

ISSN

1095-2055

Print_ISBN

978-1-4244-4581-3

Electronic_ISBN

1095-2055

Type

conf

DOI

10.1109/ICCCN.2009.5235321

Filename

5235321