A Collaborative Approach to Botnet Protection - Archive ouverte HAL Access content directly
Conference Papers Year : 2012

A Collaborative Approach to Botnet Protection

(1) , (1) , (1) , (2) , (2)
1
2

Abstract

Botnets are collections of compromised computers which have come under the control of a malicious person or organisation via malicious software stored on the computers, and which can then be used to interfere with, misuse, or deny access to a wide range of Internet-based services. With the current trend towards increasing use of the Internet to support activities related to banking, commerce, healthcare and public administration, it is vital to be able to detect and neutralise botnets, so that these activities can continue unhindered. In this paper we present an overview of existing botnet detection techniques and argue why a new, composite detection approach is needed to provide efficient and effective neutralisation of botnets. This approach should combine existing detection efforts into a collaborative botnet protection framework that receives input from a range of different sources, such as packet sniffers, on-access anti-virus software and behavioural analysis of network traffic, computer sub-systems and application programs. Finally, we introduce ContraBot, a collaborative botnet detection framework which combines approaches that analyse network traffic to identify patterns of botnet activity with approaches that analyse software to detect items which are capable of behaving maliciously.
Fichier principal
Vignette du fichier
978-3-642-32498-7_47_Chapter.pdf (172.64 Ko) Télécharger le fichier
Origin : Files produced by the author(s)
Loading...

Dates and versions

hal-01542425 , version 1 (19-06-2017)

Licence

Attribution - CC BY 4.0

Identifiers

Cite

Matija Stevanovic, Kasper Revsbech, Jens Myrup Pedersen, Robin Sharp, Christian Damsgaard Jensen. A Collaborative Approach to Botnet Protection. International Cross-Domain Conference and Workshop on Availability, Reliability, and Security (CD-ARES), Aug 2012, Prague, Czech Republic. pp.624-638, ⟨10.1007/978-3-642-32498-7_47⟩. ⟨hal-01542425⟩
66 View
205 Download

Altmetric

Share

Gmail Facebook Twitter LinkedIn More