A Collaborative Approach to Botnet Protection

Abstract : Botnets are collections of compromised computers which have come under the control of a malicious person or organisation via malicious software stored on the computers, and which can then be used to interfere with, misuse, or deny access to a wide range of Internet-based services. With the current trend towards increasing use of the Internet to support activities related to banking, commerce, healthcare and public administration, it is vital to be able to detect and neutralise botnets, so that these activities can continue unhindered. In this paper we present an overview of existing botnet detection techniques and argue why a new, composite detection approach is needed to provide efficient and effective neutralisation of botnets. This approach should combine existing detection efforts into a collaborative botnet protection framework that receives input from a range of different sources, such as packet sniffers, on-access anti-virus software and behavioural analysis of network traffic, computer sub-systems and application programs. Finally, we introduce ContraBot, a collaborative botnet detection framework which combines approaches that analyse network traffic to identify patterns of botnet activity with approaches that analyse software to detect items which are capable of behaving maliciously.
Type de document :
Communication dans un congrès
Gerald Quirchmayr; Josef Basl; Ilsun You; Lida Xu; Edgar Weippl. International Cross-Domain Conference and Workshop on Availability, Reliability, and Security (CD-ARES), Aug 2012, Prague, Czech Republic. Springer, Lecture Notes in Computer Science, LNCS-7465, pp.624-638, 2012, Multidisciplinary Research and Practice for Information Systems. 〈10.1007/978-3-642-32498-7_47〉
Liste complète des métadonnées

Littérature citée [38 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01542425
Contributeur : Hal Ifip <>
Soumis le : lundi 19 juin 2017 - 17:01:04
Dernière modification le : mardi 20 juin 2017 - 01:06:35
Document(s) archivé(s) le : vendredi 15 décembre 2017 - 18:19:28

Fichier

978-3-642-32498-7_47_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Matija Stevanovic, Kasper Revsbech, Jens Pedersen, Robin Sharp, Christian Jensen. A Collaborative Approach to Botnet Protection. Gerald Quirchmayr; Josef Basl; Ilsun You; Lida Xu; Edgar Weippl. International Cross-Domain Conference and Workshop on Availability, Reliability, and Security (CD-ARES), Aug 2012, Prague, Czech Republic. Springer, Lecture Notes in Computer Science, LNCS-7465, pp.624-638, 2012, Multidisciplinary Research and Practice for Information Systems. 〈10.1007/978-3-642-32498-7_47〉. 〈hal-01542425〉

Partager

Métriques

Consultations de la notice

62

Téléchargements de fichiers

46