DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK
Botnets are increasingly becoming the most dangerous threats in the field of network security, and many different approaches to detecting attacks from botnets have been studied. Whatever approach is used, the evolution of the botnet's nature and the set of defined rules for detecting botnets ca...
Saved in:
Main Authors: | , , |
---|---|
Format: | Article |
Language: | English |
Published: |
Dalat University
2020-09-01
|
Series: | Tạp chí Khoa học Đại học Đà Lạt |
Subjects: | |
Online Access: | http://tckh.dlu.edu.vn/index.php/tckhdhdl/article/view/652 |
Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
_version_ | 1832569777060577280 |
---|---|
author | Trần Đắc Tốt Phạm Tuấn Khiêm Phạm Nguyễn Huy Phương |
author_facet | Trần Đắc Tốt Phạm Tuấn Khiêm Phạm Nguyễn Huy Phương |
author_sort | Trần Đắc Tốt |
collection | DOAJ |
description | Botnets are increasingly becoming the most dangerous threats in the field of network security, and many different approaches to detecting attacks from botnets have been studied. Whatever approach is used, the evolution of the botnet's nature and the set of defined rules for detecting botnets can affect the performance of botnet detection systems. In this paper, we propose a general family of architectures that uses a convolutional neural network group to transform the raw characteristics provided by network flow recording and analysis tools into higher-level features, then conducts a (binary) class to assess whether a flow corresponds to a botnet attack. We experimented on the CTU-13 dataset using different configurations of the convolutional neural network to evaluate the potential of deep learning on the botnet detection problem. In particular, we propose a botnet detection system that uses a web proxy. This technique can be helpful in implementing a low-cost, but highly effective botnet detection system. |
format | Article |
id | doaj-art-1613d5d55f234bc085db2bc094b987a3 |
institution | Kabale University |
issn | 0866-787X 0866-787X |
language | English |
publishDate | 2020-09-01 |
publisher | Dalat University |
record_format | Article |
series | Tạp chí Khoa học Đại học Đà Lạt |
spelling | doaj-art-1613d5d55f234bc085db2bc094b987a32025-02-02T19:41:05ZengDalat UniversityTạp chí Khoa học Đại học Đà Lạt0866-787X0866-787X2020-09-0110332410.37569/DalatUniversity.10.3.652(2020)330DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORKTrần Đắc Tốt0Phạm Tuấn Khiêm1Phạm Nguyễn Huy Phương2Trường Đại Học Công Nghiệp Thực Phẩm Thành Phố Hồ Chí MinhTrường Đại Học Công Nghiệp Thực Phẩm Thành Phố Hồ Chí MinhTrường Đại Học Công Nghiệp Thực Phẩm Thành Phố Hồ Chí MinhBotnets are increasingly becoming the most dangerous threats in the field of network security, and many different approaches to detecting attacks from botnets have been studied. Whatever approach is used, the evolution of the botnet's nature and the set of defined rules for detecting botnets can affect the performance of botnet detection systems. In this paper, we propose a general family of architectures that uses a convolutional neural network group to transform the raw characteristics provided by network flow recording and analysis tools into higher-level features, then conducts a (binary) class to assess whether a flow corresponds to a botnet attack. We experimented on the CTU-13 dataset using different configurations of the convolutional neural network to evaluate the potential of deep learning on the botnet detection problem. In particular, we propose a botnet detection system that uses a web proxy. This technique can be helpful in implementing a low-cost, but highly effective botnet detection system.http://tckh.dlu.edu.vn/index.php/tckhdhdl/article/view/652antibotddosbotnetconvolutional neural networktấn công từ chối dịch vụweb proxy. |
spellingShingle | Trần Đắc Tốt Phạm Tuấn Khiêm Phạm Nguyễn Huy Phương DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK Tạp chí Khoa học Đại học Đà Lạt antibotddos botnet convolutional neural network tấn công từ chối dịch vụ web proxy. |
title | DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK |
title_full | DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK |
title_fullStr | DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK |
title_full_unstemmed | DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK |
title_short | DETECTING WEB-BASED BOTNETS USING A WEB PROXY AND A CONVOLUTIONAL NEURAL NETWORK |
title_sort | detecting web based botnets using a web proxy and a convolutional neural network |
topic | antibotddos botnet convolutional neural network tấn công từ chối dịch vụ web proxy. |
url | http://tckh.dlu.edu.vn/index.php/tckhdhdl/article/view/652 |
work_keys_str_mv | AT tranđactot detectingwebbasedbotnetsusingawebproxyandaconvolutionalneuralnetwork AT phamtuankhiem detectingwebbasedbotnetsusingawebproxyandaconvolutionalneuralnetwork AT phamnguyenhuyphuong detectingwebbasedbotnetsusingawebproxyandaconvolutionalneuralnetwork |