Botnet Detection Using Graph Based Feature Clustering
<p> Detecting botnets in a network is crucial because bot-activities impact numerous areas such as security, finance, health care, and law enforcement. Most existing rule and flow-based detection methods may not be capable of detecting bot-activities in an efficient manner. Hence, designing a...
| Main Author: | |
|---|---|
| Language: | EN |
| Published: |
Mississippi State University
2018
|
| Subjects: | |
| Online Access: | http://pqdtopen.proquest.com/#viewpdf?dispub=10751733 |
| id |
ndltd-PROQUEST-oai-pqdtoai.proquest.com-10751733 |
|---|---|
| record_format |
oai_dc |
| spelling |
ndltd-PROQUEST-oai-pqdtoai.proquest.com-107517332018-05-24T16:08:39Z Botnet Detection Using Graph Based Feature Clustering Akula, Ravi Kiran Industrial engineering <p> Detecting botnets in a network is crucial because bot-activities impact numerous areas such as security, finance, health care, and law enforcement. Most existing rule and flow-based detection methods may not be capable of detecting bot-activities in an efficient manner. Hence, designing a robust botnet-detection method is of high significance. In this study, we propose a botnet-detection methodology based on graph-based features. Self-Organizing Map is applied to establish the clusters of nodes in the network based on these features. Our method is capable of isolating bots in small clusters while containing most normal nodes in the big-clusters. A filtering procedure is also developed to further enhance the algorithm efficiency by removing inactive nodes from bot detection. The methodology is verified using real-world CTU-13 and ISCX botnet datasets and benchmarked against classification-based detection methods. The results show that our proposed method can efficiently detect the bots despite their varying behaviors.</p><p> Mississippi State University 2018-05-19 00:00:00.0 thesis http://pqdtopen.proquest.com/#viewpdf?dispub=10751733 EN |
| collection |
NDLTD |
| language |
EN |
| sources |
NDLTD |
| topic |
Industrial engineering |
| spellingShingle |
Industrial engineering Akula, Ravi Kiran Botnet Detection Using Graph Based Feature Clustering |
| description |
<p> Detecting botnets in a network is crucial because bot-activities impact numerous areas such as security, finance, health care, and law enforcement. Most existing rule and flow-based detection methods may not be capable of detecting bot-activities in an efficient manner. Hence, designing a robust botnet-detection method is of high significance. In this study, we propose a botnet-detection methodology based on graph-based features. Self-Organizing Map is applied to establish the clusters of nodes in the network based on these features. Our method is capable of isolating bots in small clusters while containing most normal nodes in the big-clusters. A filtering procedure is also developed to further enhance the algorithm efficiency by removing inactive nodes from bot detection. The methodology is verified using real-world CTU-13 and ISCX botnet datasets and benchmarked against classification-based detection methods. The results show that our proposed method can efficiently detect the bots despite their varying behaviors.</p><p> |
| author |
Akula, Ravi Kiran |
| author_facet |
Akula, Ravi Kiran |
| author_sort |
Akula, Ravi Kiran |
| title |
Botnet Detection Using Graph Based Feature Clustering |
| title_short |
Botnet Detection Using Graph Based Feature Clustering |
| title_full |
Botnet Detection Using Graph Based Feature Clustering |
| title_fullStr |
Botnet Detection Using Graph Based Feature Clustering |
| title_full_unstemmed |
Botnet Detection Using Graph Based Feature Clustering |
| title_sort |
botnet detection using graph based feature clustering |
| publisher |
Mississippi State University |
| publishDate |
2018 |
| url |
http://pqdtopen.proquest.com/#viewpdf?dispub=10751733 |
| work_keys_str_mv |
AT akularavikiran botnetdetectionusinggraphbasedfeatureclustering |
| _version_ |
1718680083881787392 |