The forward-backward string: A new robust feature for botnet detection

Yuan Hsiang Su, Amir Rezapour, Wen-Guey Tzeng

研究成果: Conference contribution

4 引文 斯高帕斯(Scopus)

摘要

We introduce the forward-backward string as a new feature which is robust against variation over payload length, the inter-arrival time of packets, and the number of packets within a flow. It represents an abstract activity of a host within a flow. The forward-backward string is packet-oriented and does not rely on payload size, the content of header and the inter-arrival time of packets. We use real-world botnet data to evaluate the performance of our new feature with some existing works. The experimental results show that the forward-backward string boosts the accuracy of existing works up to 5%. We further examine the robustness of the new feature against packet and flow level noise. The forward-backward string not only increases the accuracy but also enhances the robustness of the prior works.

原文English
主出版物標題2017 IEEE Conference on Dependable and Secure Computing
發行者Institute of Electrical and Electronics Engineers Inc.
頁面485-492
頁數8
ISBN(電子)9781509055692
DOIs
出版狀態Published - 18 十月 2017
事件2017 IEEE Conference on Dependable and Secure Computing - Taipei, Taiwan
持續時間: 7 八月 201710 八月 2017

出版系列

名字2017 IEEE Conference on Dependable and Secure Computing

Conference

Conference2017 IEEE Conference on Dependable and Secure Computing
國家Taiwan
城市Taipei
期間7/08/1710/08/17

指紋 深入研究「The forward-backward string: A new robust feature for botnet detection」主題。共同形成了獨特的指紋。

引用此