Abstract
Peer-to-peer (P2P) botnets are known to be highly resilient to takedown attempts. Such attempts are usually carried out by exploiting vulnerabilities in the bots communication protocol. However, a failed takedown attempt may alert botmasters and allow them to patch their vulnerabilities to thwart subsequent attempts. As a promising solution, takedowns could be evaluated in simulation environments before attempting them in the real world. To ensure such simulations are as realistic as possible, the churn behavior of botnets must be understood and measured accurately. This paper discusses potential pitfalls when measuring churn in live P2P botnets and proposes a botnet monitoring framework for uniform data collection and churn measurement for P2P botnets.
Originalsprog | Engelsk |
---|---|
Titel | CCS 2019 - Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security |
Antal sider | 3 |
Forlag | Association for Computing Machinery |
Publikationsdato | 2019 |
Sider | 2661-2663 |
ISBN (Trykt) | 978-1-4503-6747-9 |
DOI | |
Status | Udgivet - 2019 |
Begivenhed | Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security: CCS`19 - London, Storbritannien Varighed: 11 nov. 2019 → 15 nov. 2019 |
Konference
Konference | Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security |
---|---|
Land/Område | Storbritannien |
By | London |
Periode | 11/11/2019 → 15/11/2019 |