期刊名称:Journal of Theoretical and Applied Information Technology
印刷版ISSN:1992-8645
电子版ISSN:1817-3195
出版年度:2018
卷号:96
期号:14
出版社:Journal of Theoretical and Applied
摘要:Over the past years, botnets have gained the attention of researchers worldwide. A lot of effort has been given to detect the presence of a botnet. Many researchers focus on developing the systems and compare the detection method to detect the botnet activity. Identifying an appropriate threshold value is essential in order to differentiate between normal and abnormal network traffic. The suitable value of the threshold can minimize false positive rate botnet activity. Therefore, in this paper, we will identify the appropriate static value of the threshold for detecting HTTP botnet. The likelihood ratio tests and classification table were two test that will be used in order to access the fit of the model. The comparative analysis with another researcher also has been conducted. The result found showed about 95% of the data are declared as an attack when the sample of data has been compared with the value of the threshold. Thus, the value of the threshold is acceptable discrimination to use in detecting HTTP botnet activity.
