| 一种新颖的P2P僵尸网络检测技术 |
| |
| 引用本文: | 梁其川,吴礼发.一种新颖的P2P僵尸网络检测技术[J].数字社区&智能家居,2009,5(8):6186-6188. |
| |
| 作者姓名: | 梁其川 吴礼发 |
| |
| 作者单位: | 解放军理工大学指挥自动化学院,江苏南京210007 |
| |
| 摘 要: | 针对当前僵尸网络向P2P方向发展的趋势,在对P2P僵尸网络本质的理解和把握的基础上,提出了一种新颖的P2P僵尸网络检测技术。对于某个被监视的网络,关注其内部每台主机的通信行为和网络恶意活动。把这些通信行为和网络恶意活动分类,找出具有相似或相关通信和网络恶意行为的主机。根据我们对定义的理解,这些主机就属于某个P2P僵尸网络。
|
| 关 键 词: | P2P 僵尸网络 检测 网络安全 |
A Novel Technology of P2P Botnet Detection |
| |
| LIANG Qi-Chuan,WU Li-fa.A Novel Technology of P2P Botnet Detection[J].Digital Community & Smart Home,2009,5(8):6186-6188. |
| |
| Authors: | LIANG Qi-Chuan WU Li-fa |
| |
| Affiliation: | (Postgraduate Team 2 ICA, PLAUST, Nan jing 210007, China) |
| |
| Abstract: | Nowadays, botnets seem to turn their C&C channels to Peer-to-Peer. Based on deeply understandang the essence ot P2P botnet, we present a novel technology of P2P botnet detection in a monitored network. We put our focus on the communication and mali- cious activities of every host in the monitored network, and cluster the communication traffic and malicious activities, finding hosts that share similar or related communication and malicious activities model. According to our definition, these hosts should belong to some P2P botnet. |
| |
| Keywords: | P2P botnet detection network security |
| 本文献已被 维普 等数据库收录! |
|
