P2P Botnets detection based on user behavior sociality and traffic entropy function

Jin Zhigang, Wang Ying, Bo Wei

Research output: Chapter in Book/Report/Conference proceedingConference contribution

4 Citations (Scopus)

Abstract

Monitoring data of recent years from Symantec Company shows Botnet is becoming the base of all network crime. As P2P is being more widely used these days, some new Bots use P2P protocols to construct command and control system. This paper introduces Botnet detection methods, studies detection mechanism towards P2P Botnets based on user behavior, and proposes a new case to identify P2P Botnet. To test and verify function of the method we provide, a simple experiment platform is designed and implemented.

Original languageEnglish
Title of host publication2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings
Pages1953-1955
Number of pages3
DOIs
Publication statusPublished - 2012 Jun 11
Externally publishedYes
Event2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Three Gorges, China
Duration: 2012 Apr 212012 Apr 23

Publication series

Name2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings

Conference

Conference2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012
CountryChina
CityThree Gorges
Period12/4/2112/4/23

Fingerprint

Entropy
Command and control systems
Crime
Network protocols
Botnet
Monitoring
Industry
Experiments

Keywords

  • Botnet
  • Entropy
  • P2P
  • Sociality Analysis

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Electrical and Electronic Engineering

Cite this

Zhigang, J., Ying, W., & Wei, B. (2012). P2P Botnets detection based on user behavior sociality and traffic entropy function. In 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings (pp. 1953-1955). [6202113] (2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings). https://doi.org/10.1109/CECNet.2012.6202113

P2P Botnets detection based on user behavior sociality and traffic entropy function. / Zhigang, Jin; Ying, Wang; Wei, Bo.

2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings. 2012. p. 1953-1955 6202113 (2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

Zhigang, J, Ying, W & Wei, B 2012, P2P Botnets detection based on user behavior sociality and traffic entropy function. in 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings., 6202113, 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings, pp. 1953-1955, 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012, Three Gorges, China, 12/4/21. https://doi.org/10.1109/CECNet.2012.6202113
Zhigang J, Ying W, Wei B. P2P Botnets detection based on user behavior sociality and traffic entropy function. In 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings. 2012. p. 1953-1955. 6202113. (2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings). https://doi.org/10.1109/CECNet.2012.6202113
Zhigang, Jin ; Ying, Wang ; Wei, Bo. / P2P Botnets detection based on user behavior sociality and traffic entropy function. 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings. 2012. pp. 1953-1955 (2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings).
@inproceedings{be4b5ccf16be49598c73eb864d6bee3a,
title = "P2P Botnets detection based on user behavior sociality and traffic entropy function",
abstract = "Monitoring data of recent years from Symantec Company shows Botnet is becoming the base of all network crime. As P2P is being more widely used these days, some new Bots use P2P protocols to construct command and control system. This paper introduces Botnet detection methods, studies detection mechanism towards P2P Botnets based on user behavior, and proposes a new case to identify P2P Botnet. To test and verify function of the method we provide, a simple experiment platform is designed and implemented.",
keywords = "Botnet, Entropy, P2P, Sociality Analysis",
author = "Jin Zhigang and Wang Ying and Bo Wei",
year = "2012",
month = "6",
day = "11",
doi = "10.1109/CECNet.2012.6202113",
language = "English",
isbn = "9781457714153",
series = "2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings",
pages = "1953--1955",
booktitle = "2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings",

}

TY - GEN

T1 - P2P Botnets detection based on user behavior sociality and traffic entropy function

AU - Zhigang, Jin

AU - Ying, Wang

AU - Wei, Bo

PY - 2012/6/11

Y1 - 2012/6/11

N2 - Monitoring data of recent years from Symantec Company shows Botnet is becoming the base of all network crime. As P2P is being more widely used these days, some new Bots use P2P protocols to construct command and control system. This paper introduces Botnet detection methods, studies detection mechanism towards P2P Botnets based on user behavior, and proposes a new case to identify P2P Botnet. To test and verify function of the method we provide, a simple experiment platform is designed and implemented.

AB - Monitoring data of recent years from Symantec Company shows Botnet is becoming the base of all network crime. As P2P is being more widely used these days, some new Bots use P2P protocols to construct command and control system. This paper introduces Botnet detection methods, studies detection mechanism towards P2P Botnets based on user behavior, and proposes a new case to identify P2P Botnet. To test and verify function of the method we provide, a simple experiment platform is designed and implemented.

KW - Botnet

KW - Entropy

KW - P2P

KW - Sociality Analysis

UR - http://www.scopus.com/inward/record.url?scp=84861881111&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84861881111&partnerID=8YFLogxK

U2 - 10.1109/CECNet.2012.6202113

DO - 10.1109/CECNet.2012.6202113

M3 - Conference contribution

AN - SCOPUS:84861881111

SN - 9781457714153

T3 - 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings

SP - 1953

EP - 1955

BT - 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings

ER -