Botnet Detection Using Structured Graph Analysis
1 671
23.2
Microsoft Research331 тыс
Следующее
12.08.16 – 2131:27:58Популярные
15.02.23 – 2 47414:39
16.12.22 – 1 2710:56Опубликовано 12 августа 2016, 2:04
As corporations, agencies, and individuals continue to invest in national infrastructure trusting it to withstand cyber-attacks, it is important to ensure that the this trust is warranted. In this talk, I will present ISP level countermeasures that localise bots based on the unique communication patterns arising from their overlay topologies used for command and control. I will also present schemes that allow ISPs to cooperatively detect botnet attacks and other network anomalies without leaking private traffic information. Experimental results on synthetic topologies embedded within Internet traffic traces from an ISP's backbone network indicate that our techniques (i) can localize the majority of bots with low false positive rate, (ii) are resilient to the partial visibility arising from partial deployment of monitoring systems, and measurement inaccuracies arising from partial visibility and dynamics of background traffic, and (iii) are scalable enough to show good promise as a key element of a wider network anomaly detection framework.
Свежие видео
8 дней – 2 7434:24
14 дней – 9241:37
23 дня – 2 72829:44
30 дней – 6 2323:33
31 день – 3 4990:23Случайные видео
10 дней – 2 81611:42
127 дней – 3 33231:23
169 дней – 5 5580:17
06.06.23 – 18 114 82120:11
16.05.21 – 6311:31
14.06.20 – 1 083 67210:10
12 часов – 35 97411:20
7 часов – 1057:56
1 день – 4 23018:38
8 дней – 45 6712:09
16 дней – 2 2992:28
16 дней – 580:59
16 дней – 26 40424:29
2 дня – 1 390 14114:19