于晓聪, 董晓梅, 于戈, 秦玉海. 僵尸网络在线检测技术研究[J]. 武汉大学学报 ( 信息科学版), 2010, 35(5): 578-581.
引用本文: 于晓聪, 董晓梅, 于戈, 秦玉海. 僵尸网络在线检测技术研究[J]. 武汉大学学报 ( 信息科学版), 2010, 35(5): 578-581.
shu
YU Xiaocong, DONG Xiaomei, YU Ge, QIN Yuhai. Online Botnet Detection Techniques[J]. Geomatics and Information Science of Wuhan University, 2010, 35(5): 578-581.
Citation: YU Xiaocong, DONG Xiaomei, YU Ge, QIN Yuhai. Online Botnet Detection Techniques[J]. Geomatics and Information Science of Wuhan University, 2010, 35(5): 578-581.
shu

僵尸网络在线检测技术研究

Online Botnet Detection Techniques

    摘要
  • 摘要: 僵尸网络为平台的攻击发展迅速,当前大多数的检测方法是通过分析历史网络流量信息来发现特定协议的僵尸网络,难以满足实时需要,且不能通用。针对这种情况,提出了一种独立于控制协议与结构的僵尸网络在线检测技术,能够从网络流量数据中快速检测出可疑僵尸主机。模拟实验结果表明,该技术能够高效地实现僵尸网络在线检测。

     

    Abstract: Botnet-based attacking is becoming one of the most serious threats on the Internet.Lots of approaches have been proposed to detect the presence of botnet.However,most of them just focus on offline detection methods by tracking the historical network traffic,which is not suitable for real-time and general detection.In this paper,we propose a new technique that can detect the botnet activities in an online fashion,which is also independent of the botnet structure.The experimental evaluations show that this approach can achieve online botnet detection efficiently.

     

    • HTML全文
    • 参考文献(0)
    • 相关文章
    • 施引文献
  • 资源附件(0)

/

返回文章
返回