• DocumentCode
    693665
  • Title

    Enhanced P2P botnets detection framework architecture with hybrid analyzer: Host-based and network-based

  • Author

    Abdullah, Raihana Syahirah ; Faizal, M.A. ; Muhamad Noh, Zul Azri ; Selamat, Siti Rahayu ; Zaki Mas´ud, Mohd ; Sahib, Shahrin

  • Author_Institution
    Fac. of Inf. & Commun. Technol., Univ. Teknikal Malaysia Melaka (UTeM), Durian Tunggal, Malaysia
  • fYear
    2013
  • fDate
    4-6 Dec. 2013
  • Firstpage
    72
  • Lastpage
    77
  • Abstract
    Nowadays, botnets are the most advanced cybercrime as being powerful threaten to the internet infrastructure by risking the Internet stability and security. Millions of computers have been hijacking and infecting by botnets especially during peak activity. The P2P botnets exploit users and dominating the P2P technology which make botnets are harder to detect and terminated. As P2P botnets issues been highlighted as it´s dramatically evolvement, this paper addresses on current problems relate to P2P botnets faced by users and recommending the improvement. Also, this paper concentrated on proposing P2P botnets detection framework. Also, an in-depth analysis of P2P botnets has been conducted to understand and cope with their behaviors and characteristics. The new improvement has been introduced at the propose botnets framework architecture to improve the effectiveness of P2P detection analysis. The framework architecture has been structuralized with hybrid analyzer through the marriage of host-based and network based. Prior to this matter, this research has proposed a new enhancement on framework architecture that has been reinforced by hybrid detection technique to improve the effectiveness and efficiency of P2P botnets detection.
  • Keywords
    Internet; computer crime; peer-to-peer computing; Internet infrastructure; Internet security; Internet stability; P2P botnets detection framework architecture; P2P detection analysis; P2P technology; computers; cybercrime; hybrid analyzer; hybrid detection technique; Accuracy; File systems; Internet; Monitoring; Payloads; Peer-to-peer computing; Robustness; P2P botnets; detection framework; hybrid analysis; hybrid analyzer; hybrid technique;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Information Assurance and Security (IAS), 2013 9th International Conference on
  • Conference_Location
    Gammarth
  • Print_ISBN
    978-1-4799-2989-4
  • Type

    conf

  • DOI
    10.1109/ISIAS.2013.6947736
  • Filename
    6947736