Back to Search Start Over

Botnet Domain Name Detection based on Machine Learning

Authors :
Guanggang Geng
Zhiwei Yan
Baoping Yan
Jian Jin
Source :
Scopus-Elsevier
Publication Year :
2015
Publisher :
Institution of Engineering and Technology, 2015.

Abstract

Domain Name System (DNS) is a fundamental component of today's Internet: it provides mappings between domain names used by people and the corresponding IP addresses required by network protocols. However, the open and fundamental characteristics of DNS are recently used by the botnet for the communication between bots and C&C. In this paper, we select six kinds of special features of botnet domain querying traffic based on the deep studies of the DNS log. Then three popular classifiers are adopted in order to pick the malicious domains out from the DNS traffic using those features.

Subjects

Subjects :
Software_OPERATINGSYSTEMS
business.industry
Computer science
Domain Name System
ComputerSystemsOrganization_COMPUTER-COMMUNICATIONNETWORKS
Botnet
Computer security
computer.software_genre
Domain (software engineering)
ComputingMilieux_MANAGEMENTOFCOMPUTINGANDINFORMATIONSYSTEMS
Root name server
The Internet
DNS spoofing
DNS hijacking
business
Communications protocol
computer
Computer network

Details

Database :
OpenAIRE
Journal :
6th International Conference on Wireless, Mobile and Multi-Media (ICWMMN 2015)
Accession number :
edsair.doi.dedup.....fdca916130f17c560aa54bde1eed2a2d
Full Text :
https://doi.org/10.1049/cp.2015.0953
Full Text Access
View/download PDF

Tools

Authors Abstract Subjects Details