期刊名称:International Journal of Security and Its Applications
印刷版ISSN:1738-9976
出版年度:2014
卷号:8
期号:3
页码:87-96
DOI:10.14257/ijsia.2014.8.3.10
出版社:SERSC
摘要:P2P botnet has become a significant threats in security network. In this paper, we propose a new method to detection the P2P botnet through the analysis of the P2P botnet host's life cycle, use the method of off-line detection to find the suspected botnet hosts, and determine the P2P botnet host through online monitoring method. In this way, the efficiency and the accurate rate of P2P botnet detection have raised then only use one method, and reduce the harm of the P2P botnet.
关键词:P2P botnet; life cycle; detection; monitoring; netflow
