Proactive Botnet Detection and Defense at Internet scale

Christian Dietz, Anna Sperotto, Aiko Pras, G. Dreo

    Research output: Contribution to conferencePosterOther research output

    45 Downloads (Pure)

    Abstract

    Botnets provide the basis for various cyber-threats. However, setting up a complex botnet infrastructure often involves registration of domain names in the domain name system (DNS). Active as well as passive monitoring approaches can be used in the detection of domains that are registered for botnets and other malicious activities. We present a novel architecture for proactive botent detection and defense based on large-scale DNS measurement and smart pattern recognition using machine learning.
    Original languageUndefined
    Number of pages1
    Publication statusPublished - Apr 2016
    Event6th PhD School on Traffic Monitoring and Analysis, TMA 2016 - Louvain La Neuve
    Duration: 5 Apr 20166 Apr 2016

    Other

    Other6th PhD School on Traffic Monitoring and Analysis, TMA 2016
    Period5/04/166/04/16
    Other5-6 April 2016

    Keywords

    • cybercrime
    • Active and Passive Measurement
    • EWI-27845
    • DNS
    • Internet Threats
    • Detection and Defence
    • Machine Learning
    • Botnet

    Cite this