Botnet Detection Using Graph Based Feature Clustering

机译：使用基于图的特征聚类进行僵尸网络检测

获取原文

获取原文并翻译 | 示例

页面导航

摘要
著录项
相似文献
相关主题

摘要

Detecting botnets in a network is crucial because bot-activities impact numerous areas such as security, finance, health care, and law enforcement. Most existing rule and flow-based detection methods may not be capable of detecting bot-activities in an efficient manner. Hence, designing a robust botnet-detection method is of high significance. In this study, we propose a botnet-detection methodology based on graph-based features. Self-Organizing Map is applied to establish the clusters of nodes in the network based on these features. Our method is capable of isolating bots in small clusters while containing most normal nodes in the big-clusters. A filtering procedure is also developed to further enhance the algorithm efficiency by removing inactive nodes from bot detection. The methodology is verified using real-world CTU-13 and ISCX botnet datasets and benchmarked against classification-based detection methods. The results show that our proposed method can efficiently detect the bots despite their varying behaviors.

机译：检测网络中的僵尸网络至关重要，因为僵尸网络活动会影响安全，财务，医疗保健和执法等众多领域。大多数现有的基于规则和基于流的检测方法可能无法以有效方式检测机器人活动。因此，设计鲁棒的僵尸网络检测方法具有重要意义。在这项研究中，我们提出了一种基于图的特征的僵尸网络检测方法。自组织图基于这些功能被应用于在网络中建立节点的集群。我们的方法能够隔离小型群集中的漫游器，同时在大型群集中包含大多数正常节点。还开发了一种过滤程序，通过从bot检测中删除不活动的节点来进一步提高算法效率。使用实际的CTU-13和ISCX僵尸网络数据集验证了该方法，并针对基于分类的检测方法进行了基准测试。结果表明，我们提出的方法可以有效地检测机器人，尽管它们的行为各不相同。

著录项

作者
Akula, Ravi Kiran.;
展开▼
作者单位

Mississippi State University.;

展开▼
授予单位 Mississippi State University.;
学科 Industrial engineering.
学位 M.S.
年度 2018
页码 69 p.
总页数 69
原文格式 PDF
正文语种 eng
中图分类
关键词

相似文献

外文文献
中文文献
专利

1. Botnet detection using graph-based feature clustering [J] . Sudipta Chowdhury, Mojtaba Khanzadeh, Ravi Akula, Journal of Big Data . 2017,第1期

机译：使用基于图的特征聚类进行僵尸网络检测
2. BotCapturer: Detecting Botnets based on Two-Layered Analysis with Graph Anomaly Detection and Network Traffic Clustering [J] . Wei Wang, Yang Wang, Xinlu Tan, International Journal of Performability Engineering . 2018,第5期

机译：Botcapture：基于Traph异常检测和网络流量聚类的两层分析检测僵尸网络
3. Paragraph Selection Methods Using Feature-Based on Segment-Based Clustering Process Using Paragraphs for Identifying Topics on Indication Detection of Plagiarism System [J] . Denar Regata Akbi, Arini Rahmawati Rosyadi Kinetik . 2018,第2期

机译：基于特征的段落选择方法基于段的聚类过程使用段落识别of窃系统指示检测的主题
4. Botnet Detection with Hybrid Analysis on Flow Based and Graph Based Features of Network Traffic [C] . Yaoyao Shang, Shuangmao Yang, Wei Wang International conference on cloud computing and security . 2018

机译：基于流量和图特征的混合分析僵尸网络检测
5. Satellite mapping and automated feature extraction: Geographic information system-based change detection of the Antarctic coast. [D] . Kim, Kee-Tae. 2004

机译：卫星测绘和自动特征提取：基于地理信息系统的南极海岸变化检测。
6. Benchmark-Based Reference Model for Evaluating Botnet Detection Tools Driven by Traffic-Flow Analytics [O] . Katherinne Shirley Huancayo Ramos, Marco Antonio Sotelo Monge, Jorge Maestre Vidal 2020

机译：基于基于基准的参考模型用于评估流量流量分析驱动的僵尸网络检测工具
7. A Feature Extraction Method for P2P Botnet Detection Using Graphic Symmetry Concept [O] . Zhixian Yang, Buhong Wang 2019

机译：使用图形对称概念的P2P僵尸网络检测特征提取方法

Botnet Detection Using Graph Based Feature Clustering

摘要

著录项

相似文献

相关主题

期刊订阅