Botnet Fingerprinting: Anomaly Detection in SMTP Conversations

Piotr Bazydło; Krzysztof Lasota; Adam Kozakiewicz

首页> 外文期刊>IEEE security & privacy >Botnet Fingerprinting: Anomaly Detection in SMTP Conversations

【24h】

Botnet Fingerprinting: Anomaly Detection in SMTP Conversations

机译：僵尸网络指纹识别：SMTP会话中的异常检测

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

This article presents the results obtained during research on detection of unsolicited emails sent by botnets. The distinction from most existing solutions is that the presented approach is based on the analysis of network traffic, specifically the sequence and syntax of SMTP commands observed during email delivery. The authors present several improvements for detecting unsolicited email sources from different botnets (fingerprinting) that can be used during network forensic investigation.

机译：本文介绍了在检测僵尸网络发送的未经请求的电子邮件期间获得的结果。与大多数现有解决方案的区别在于，本文提出的方法基于对网络流量的分析，特别是在电子邮件传递过程中观察到的SMTP命令的顺序和语法。作者提出了一些改进措施，用于检测来自不同僵尸网络的未经请求的电子邮件源（指纹），这些僵尸网络可用于网络取证调查。

著录项

来源
《IEEE security & privacy》 |2017年第6期|25-32|共8页
作者
Piotr Bazydło; Krzysztof Lasota; Adam Kozakiewicz;
展开▼
作者单位

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Electronic mail; Unsolicited electronic mail; Protocols; Digital forensics; Syntactics; Botnet; Computer security; Privacy; Anomaly detection;

机译：电子邮件;不请自来的电子邮件;协议;数字取证;句法;僵尸网络;计算机安全;隐私;异常检测;

相似文献

外文文献
中文文献
专利

1. Botnet Detection based on System and Community Anomaly Detection [J] . Adisesh Mishra, Jalaj Joshi International Journal of Computer Science and Technology . 2017,第2a1期

机译：基于系统和社区异常检测的僵尸网络检测
2. The Anomaly Detection in SMTP Traffic Based on Leaky Integrate-and-Fire Model [J] . LUO Hao, FANG Bin-xing, YUN Xiao-chun 上海交通大学学报（英文版） . 2006,第002期
3. An Effective Conversation-Based Botnet Detection Method [J] . Chen Ruidong, Niu Weina, Zhang Xiaosong, Mathematical Problems in Engineering . 2017,第期

机译：一种基于对话的有效僵尸网络检测方法
4. An anomaly-based botnet detection approach for identifying stealthy botnets [C] . Arshad Sajjad, Abbaspour Maghsoud, Kharrazi Mehdi, 2011 International Conference on Computer Applications and Industrial Electronics . 2011

机译：基于异常的僵尸网络检测方法，用于识别隐形僵尸网络
5. Strategies in Botnet Detection and Privacy Preserving Machine Learning [D] . Zhuang, Di. 2021

机译：僵尸网络检测与隐私保存机学习的策略
6. DReLAB - Deep REinforcement Learning Adversarial Botnet: A benchmark dataset for adversarial attacks against botnet Intrusion Detection Systems [O] . Andrea Venturi, Giovanni Apruzzese, Mauro Andreolini, 2021

机译：DRELAB - 深度加强学习对抗僵尸网络：用于对僵尸网络入侵检测系统进行对抗性攻击的基准数据集
7. Botnet Fingerprinting: Anomaly Detection in SMTP Conversations [O] . Piotr Bazydlo, Krzysztof Lasota, Adam Kozakiewicz 2017

机译：僵尸网络指纹：SMTP对话中的异常检测
8. Countering Botnets: Anomaly-Based Detection, Comprehensive Analysis, and Efficient Mitigation [R] . Lee, W., Dagon, D., Giffin, J., 2011

机译：反击僵尸网络：基于异常的检测，综合分析和有效的缓解

Botnet Fingerprinting: Anomaly Detection in SMTP Conversations

摘要

著录项

相似文献

相关主题

期刊订阅