Title :
Botnet detection technology based on the on-line error model
Author :
Xuan Zhang Zhu ; Ya Fei Li
Author_Institution :
Center of Educ. Technol., Hunan Univ. of Sci. & Eng., Yongzhou, China
Abstract :
Botnet is a serious information safety problem in the recent network. How to effectively find out the victim host and how to make the victim host free from the control of the botnet have become an urgent problem to be solved in the current network safety. In the paper, the use of the network online failure can distinguish the normal flow, P2P flow and the flow infected by the botnet. It can abstract the relevant characteristic values by observing the normal flow, the P2P flow and the online failure from the botnet intranet to the outer net, and then the characteristic values can create the detection model through the machine learning. The use of the detection model can distinguish the different kinds of flows.
Keywords :
intranets; invasive software; learning (artificial intelligence); peer-to-peer computing; P2P flow; botnet detection technology; botnet infected flow; botnet intranet; information safety problem; machine learning; network online failure; normal flow; online error model; online failure; outer net; Network management; botnet; machine learning; online failure;
Conference_Titel :
Computer Science and Network Technology (ICCSNT), 2012 2nd International Conference on
Conference_Location :
Changchun
Print_ISBN :
978-1-4673-2963-7
DOI :
10.1109/ICCSNT.2012.6526269
