What is the Pattern of a Botnet?

Author

Tianzuo Wang ; Huaimin Wang ; Bo Liu ; Peichang Shi

Author_Institution

Sch. of Comput. Sci., Nat. Univ. of Defense Technol., Changsha, China

fYear

2013

fDate

16-18 July 2013

Firstpage

257

Lastpage

264

Abstract

As complex, flexible and efficient platforms for network attacks, botnets are considered as one of the most serious threats to current Internet security. The evolution and diversification of botnets call for a clear and fine grained taxonomy, but existing taxonomies are either incomplete or overlapping. In order to classify botnets accurately, we propose a concept called control structure to exactly and uniformly describe how botnets are controlled by botmasters. From the point of control structure, we classify botnets into certain patterns. Our taxonomy not only helps to understand botnets better, but also is useful for defenders when considering how to take down a botnet. Further, through comparison between different patterns, we predict that the P pattern and F-(O, P) pattern would be the most important trends for botnets, and the F layer would less likely appear without a P layer.

Keywords

Internet; computer network security; invasive software; Internet security; botnet; network attack; Barium; Erbium; Resilience; Security; Servers; Taxonomy; Topology; botnet; control structure; pattern; taxonomy;

fLanguage

English

Publisher

ieee

Conference_Titel

Trust, Security and Privacy in Computing and Communications (TrustCom), 2013 12th IEEE International Conference on

Conference_Location

Melbourne, VIC

Type

conf

DOI

10.1109/TrustCom.2013.35

Filename

6680849