P2P Botnets detection based on user behavior sociality and traffic entropy function

Jin Zhigang; Wang Ying; Wei Bo

doi:10.1109/CECNet.2012.6202113

P2P Botnets detection based on user behavior sociality and traffic entropy function

Jin Zhigang^*, Wang Ying, Wei Bo

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

4 Citations (Scopus)

Abstract

Monitoring data of recent years from Symantec Company shows Botnet is becoming the base of all network crime. As P2P is being more widely used these days, some new Bots use P2P protocols to construct command and control system. This paper introduces Botnet detection methods, studies detection mechanism towards P2P Botnets based on user behavior, and proposes a new case to identify P2P Botnet. To test and verify function of the method we provide, a simple experiment platform is designed and implemented.

Original language	English
Title of host publication	2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings
Pages	1953-1955
Number of pages	3
DOIs	https://doi.org/10.1109/CECNet.2012.6202113
Publication status	Published - 2012
Externally published	Yes
Event	2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Three Gorges, China Duration: 2012 Apr 21 → 2012 Apr 23

Publication series

Name	2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings

Conference

Conference	2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012
Country/Territory	China
City	Three Gorges
Period	12/4/21 → 12/4/23

Keywords

Botnet
Entropy
P2P
Sociality Analysis

ASJC Scopus subject areas

Computer Networks and Communications
Electrical and Electronic Engineering

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

Access to Document

10.1109/CECNet.2012.6202113

Cite this

Zhigang, J., Ying, W., & Bo, W. (2012). P2P Botnets detection based on user behavior sociality and traffic entropy function. In 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings (pp. 1953-1955). Article 6202113 (2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings). https://doi.org/10.1109/CECNet.2012.6202113

P2P Botnets detection based on user behavior sociality and traffic entropy function. / Zhigang, Jin; Ying, Wang; Bo, Wei.
2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings. 2012. p. 1953-1955 6202113 (2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Zhigang, J, Ying, W & Bo, W 2012, P2P Botnets detection based on user behavior sociality and traffic entropy function. in 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings., 6202113, 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings, pp. 1953-1955, 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012, Three Gorges, China, 12/4/21. https://doi.org/10.1109/CECNet.2012.6202113

Zhigang J, Ying W, Bo W. P2P Botnets detection based on user behavior sociality and traffic entropy function. In 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings. 2012. p. 1953-1955. 6202113. (2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings). doi: 10.1109/CECNet.2012.6202113

Zhigang, Jin ; Ying, Wang ; Bo, Wei. / P2P Botnets detection based on user behavior sociality and traffic entropy function. 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings. 2012. pp. 1953-1955 (2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings).

@inproceedings{be4b5ccf16be49598c73eb864d6bee3a,

title = "P2P Botnets detection based on user behavior sociality and traffic entropy function",

abstract = "Monitoring data of recent years from Symantec Company shows Botnet is becoming the base of all network crime. As P2P is being more widely used these days, some new Bots use P2P protocols to construct command and control system. This paper introduces Botnet detection methods, studies detection mechanism towards P2P Botnets based on user behavior, and proposes a new case to identify P2P Botnet. To test and verify function of the method we provide, a simple experiment platform is designed and implemented.",

keywords = "Botnet, Entropy, P2P, Sociality Analysis",

author = "Jin Zhigang and Wang Ying and Wei Bo",

note = "Copyright: Copyright 2012 Elsevier B.V., All rights reserved.; 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 ; Conference date: 21-04-2012 Through 23-04-2012",

year = "2012",

doi = "10.1109/CECNet.2012.6202113",

language = "English",

isbn = "9781457714153",

series = "2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings",

pages = "1953--1955",

booktitle = "2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings",

}

TY - GEN

T1 - P2P Botnets detection based on user behavior sociality and traffic entropy function

AU - Zhigang, Jin

AU - Ying, Wang

AU - Bo, Wei

PY - 2012

Y1 - 2012

N2 - Monitoring data of recent years from Symantec Company shows Botnet is becoming the base of all network crime. As P2P is being more widely used these days, some new Bots use P2P protocols to construct command and control system. This paper introduces Botnet detection methods, studies detection mechanism towards P2P Botnets based on user behavior, and proposes a new case to identify P2P Botnet. To test and verify function of the method we provide, a simple experiment platform is designed and implemented.

AB - Monitoring data of recent years from Symantec Company shows Botnet is becoming the base of all network crime. As P2P is being more widely used these days, some new Bots use P2P protocols to construct command and control system. This paper introduces Botnet detection methods, studies detection mechanism towards P2P Botnets based on user behavior, and proposes a new case to identify P2P Botnet. To test and verify function of the method we provide, a simple experiment platform is designed and implemented.

KW - Botnet

KW - Entropy

KW - P2P

KW - Sociality Analysis

UR - http://www.scopus.com/inward/record.url?scp=84861881111&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84861881111&partnerID=8YFLogxK

U2 - 10.1109/CECNet.2012.6202113

DO - 10.1109/CECNet.2012.6202113

M3 - Conference contribution

AN - SCOPUS:84861881111

SN - 9781457714153

T3 - 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings

SP - 1953

EP - 1955

BT - 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012 - Proceedings

T2 - 2012 2nd International Conference on Consumer Electronics, Communications and Networks, CECNet 2012

Y2 - 21 April 2012 through 23 April 2012

ER -

P2P Botnets detection based on user behavior sociality and traffic entropy function

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

UN SDGs

Access to Document

Other files and links

Fingerprint

Cite this