• DocumentCode
    3466085
  • Title

    Detecting Botnets in Computer Networks Using Multi-agent Technology

  • Author

    Szymczyk, Miroslaw

  • Author_Institution
    Inst. of Comput. Eng., Control & Robot., Wroclaw Univ. of Technol., Wroclaw, Poland
  • fYear
    2009
  • fDate
    June 30 2009-July 2 2009
  • Firstpage
    192
  • Lastpage
    201
  • Abstract
    The paper presents a hybrid model of the bots detector which is a combination of host intrusion detection system and the operating system event log analyzer. Bot can be defined as a computer that have been attacked by a hacker or infected with malicious software and is used for illegal activities. Collections of infected computers form a botnet. The proposed system is used to detect bots based on the evaluation of events occurring in the operating system and network environment. Detection algorithms based on the signatures derived from the analysis of the various types of malicious software that creates bots. The model has been implemented using multi-agent technology.
  • Keywords
    multi-agent systems; operating systems (computers); security of data; botnets detection; bots detector; computer networks; illegal activities; intrusion detection system; malicious software; multiagent technology; operating system event log analyzer; Computer networks;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Dependability of Computer Systems, 2009. DepCos-RELCOMEX '09. Fourth International Conference on
  • Conference_Location
    Brunow
  • Print_ISBN
    978-0-7695-3674-3
  • Type

    conf

  • DOI
    10.1109/DepCoS-RELCOMEX.2009.46
  • Filename
    5261007
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3466085