Proactive Botnet Detection and Defense at Internet scale

Christian Dietz; Anna Sperotto; Aiko Pras; G. Dreo

Proactive Botnet Detection and Defense at Internet scale

Christian Dietz, Anna Sperotto, Aiko Pras, G. Dreo

Research output: Contribution to conference › Poster › Other research output

67 Downloads (Pure)

Abstract

Botnets provide the basis for various cyber-threats. However, setting up a complex botnet infrastructure often involves registration of domain names in the domain name system (DNS). Active as well as passive monitoring approaches can be used in the detection of domains that are registered for botnets and other malicious activities. We present a novel architecture for proactive botent detection and defense based on large-scale DNS measurement and smart pattern recognition using machine learning.

Original language	Undefined
Number of pages	1
Publication status	Published - Apr 2016
Event	6th PhD School on Traffic Monitoring and Analysis, TMA 2016 - Louvain La Neuve Duration: 5 Apr 2016 → 6 Apr 2016

Other

Other	6th PhD School on Traffic Monitoring and Analysis, TMA 2016
Period	5/04/16 → 6/04/16
Other	5-6 April 2016

Keywords

cybercrime
Active and Passive Measurement
EWI-27845
DNS
Internet Threats
Detection and Defence
Machine Learning
Botnet

Access to Document

Proactive_Botnet_Detection_Christian_Dietz_TMA2016

http://tma.ifip.org/2016/phdSchool/posters/Proactive_Botnet_Detection_Christian_Dietz_TMA2016.pdf

Cite this

@conference{ebe96a4aeb8743c4aa662739ac5f3c79,

title = "Proactive Botnet Detection and Defense at Internet scale",

abstract = "Botnets provide the basis for various cyber-threats. However, setting up a complex botnet infrastructure often involves registration of domain names in the domain name system (DNS). Active as well as passive monitoring approaches can be used in the detection of domains that are registered for botnets and other malicious activities. We present a novel architecture for proactive botent detection and defense based on large-scale DNS measurement and smart pattern recognition using machine learning.",

keywords = "cybercrime, Active and Passive Measurement, EWI-27845, DNS, Internet Threats, Detection and Defence, Machine Learning, Botnet",

author = "Christian Dietz and Anna Sperotto and Aiko Pras and G. Dreo",

year = "2016",

month = apr,

language = "Undefined",

note = "6th PhD School on Traffic Monitoring and Analysis, TMA 2016 ; Conference date: 05-04-2016 Through 06-04-2016",

}

TY - CONF

T1 - Proactive Botnet Detection and Defense at Internet scale

AU - Dietz, Christian

AU - Sperotto, Anna

AU - Pras, Aiko

AU - Dreo, G.

PY - 2016/4

Y1 - 2016/4

N2 - Botnets provide the basis for various cyber-threats. However, setting up a complex botnet infrastructure often involves registration of domain names in the domain name system (DNS). Active as well as passive monitoring approaches can be used in the detection of domains that are registered for botnets and other malicious activities. We present a novel architecture for proactive botent detection and defense based on large-scale DNS measurement and smart pattern recognition using machine learning.

AB - Botnets provide the basis for various cyber-threats. However, setting up a complex botnet infrastructure often involves registration of domain names in the domain name system (DNS). Active as well as passive monitoring approaches can be used in the detection of domains that are registered for botnets and other malicious activities. We present a novel architecture for proactive botent detection and defense based on large-scale DNS measurement and smart pattern recognition using machine learning.

KW - cybercrime

KW - Active and Passive Measurement

KW - EWI-27845

KW - DNS

KW - Internet Threats

KW - Detection and Defence

KW - Machine Learning

KW - Botnet

M3 - Poster

T2 - 6th PhD School on Traffic Monitoring and Analysis, TMA 2016

Y2 - 5 April 2016 through 6 April 2016

ER -