DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK

Botnets are increasingly becoming the most dangerous threats in the field of network security, and many different approaches to detecting attacks from botnets have been studied. Whatever approach is used, the evolution of the botnet's nature and the set of defined rules for detecting botnets ca...

Full description

Saved in:
Bibliographic Details
Main Authors: Trần Đắc Tốt, Phạm Tuấn Khiêm, Phạm Nguyễn Huy Phương
Format: Article
Language:English
Published: Dalat University 2020-09-01
Series:Tạp chí Khoa học Đại học Đà Lạt
Subjects:
Online Access:http://tckh.dlu.edu.vn/index.php/tckhdhdl/article/view/652
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1832569777060577280
author Trần Đắc Tốt
Phạm Tuấn Khiêm
Phạm Nguyễn Huy Phương
author_facet Trần Đắc Tốt
Phạm Tuấn Khiêm
Phạm Nguyễn Huy Phương
author_sort Trần Đắc Tốt
collection DOAJ
description Botnets are increasingly becoming the most dangerous threats in the field of network security, and many different approaches to detecting attacks from botnets have been studied. Whatever approach is used, the evolution of the botnet's nature and the set of defined rules for detecting botnets can affect the performance of botnet detection systems. In this paper, we propose a general family of architectures that uses a convolutional neural network group to transform the raw characteristics provided by network flow recording and analysis tools into higher-level features, then conducts a (binary) class to assess whether a flow corresponds to a botnet attack. We experimented on the CTU-13 dataset using different configurations of the convolutional neural network to evaluate the potential of deep learning on the botnet detection problem. In particular, we propose a botnet detection system that uses a web proxy. This technique can be helpful in implementing a low-cost, but highly effective botnet detection system.
format Article
id doaj-art-1613d5d55f234bc085db2bc094b987a3
institution Kabale University
issn 0866-787X
0866-787X
language English
publishDate 2020-09-01
publisher Dalat University
record_format Article
series Tạp chí Khoa học Đại học Đà Lạt
spelling doaj-art-1613d5d55f234bc085db2bc094b987a32025-02-02T19:41:05ZengDalat UniversityTạp chí Khoa học Đại học Đà Lạt0866-787X0866-787X2020-09-0110332410.37569/DalatUniversity.10.3.652(2020)330DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORKTrần Đắc Tốt0Phạm Tuấn Khiêm1Phạm Nguyễn Huy Phương2Trường Đại Học Công Nghiệp Thực Phẩm Thành Phố Hồ Chí MinhTrường Đại Học Công Nghiệp Thực Phẩm Thành Phố Hồ Chí MinhTrường Đại Học Công Nghiệp Thực Phẩm Thành Phố Hồ Chí MinhBotnets are increasingly becoming the most dangerous threats in the field of network security, and many different approaches to detecting attacks from botnets have been studied. Whatever approach is used, the evolution of the botnet's nature and the set of defined rules for detecting botnets can affect the performance of botnet detection systems. In this paper, we propose a general family of architectures that uses a convolutional neural network group to transform the raw characteristics provided by network flow recording and analysis tools into higher-level features, then conducts a (binary) class to assess whether a flow corresponds to a botnet attack. We experimented on the CTU-13 dataset using different configurations of the convolutional neural network to evaluate the potential of deep learning on the botnet detection problem. In particular, we propose a botnet detection system that uses a web proxy. This technique can be helpful in implementing a low-cost, but highly effective botnet detection system.http://tckh.dlu.edu.vn/index.php/tckhdhdl/article/view/652antibotddosbotnetconvolutional neural networktấn công từ chối dịch vụweb proxy.
spellingShingle Trần Đắc Tốt
Phạm Tuấn Khiêm
Phạm Nguyễn Huy Phương
DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK
Tạp chí Khoa học Đại học Đà Lạt
antibotddos
botnet
convolutional neural network
tấn công từ chối dịch vụ
web proxy.
title DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK
title_full DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK
title_fullStr DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK
title_full_unstemmed DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK
title_short DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK
title_sort detecting web based botnets using a web proxy and a convolutional neural network
topic antibotddos
botnet
convolutional neural network
tấn công từ chối dịch vụ
web proxy.
url http://tckh.dlu.edu.vn/index.php/tckhdhdl/article/view/652
work_keys_str_mv AT tranđactot detectingwebbasedbotnetsusingawebproxyandaconvolutionalneuralnetwork
AT phamtuankhiem detectingwebbasedbotnetsusingawebproxyandaconvolutionalneuralnetwork
AT phamnguyenhuyphuong detectingwebbasedbotnetsusingawebproxyandaconvolutionalneuralnetwork