{"title":"僵尸网络活动检测流量分割中的滑动时间分析","authors":"Dandy Pramana Hostiadi, T. Ahmad","doi":"10.1109/icci54321.2022.9756077","DOIUrl":null,"url":null,"abstract":"Botnets are a threat in a dangerous cyber era. Botnets involve malicious software to attack the system based on instructions from the botmaster. Previous research had introduced a botnet activity detection model, such as using activity time analysis through a sliding time-based traffic segmentation process. However, the introduced model has not analyzed the ideal time in the sliding process in the segmentation process. The sliding process is needed to detect the botnet attack activity chain correctly. This paper analyzed the ideal time in the sliding process in traffic data segmentation to detect botnet activity and obtain information about botnet attacks. It aimed to get the optimal time in the sliding process and see its effect on detection accuracy. The test was carried out using a public dataset, namely the CTU-13 dataset, based on the two detection models in previous research. The result showed that the optimal time in the sliding process was 30 minutes in both detection models, with the best scenario detection results of 231 and the best detection accuracy of 97.93%.","PeriodicalId":122550,"journal":{"name":"2022 5th International Conference on Computing and Informatics (ICCI)","volume":"31 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-03-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Sliding Time Analysis in Traffic Segmentation for Botnet Activity Detection\",\"authors\":\"Dandy Pramana Hostiadi, T. Ahmad\",\"doi\":\"10.1109/icci54321.2022.9756077\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Botnets are a threat in a dangerous cyber era. Botnets involve malicious software to attack the system based on instructions from the botmaster. Previous research had introduced a botnet activity detection model, such as using activity time analysis through a sliding time-based traffic segmentation process. However, the introduced model has not analyzed the ideal time in the sliding process in the segmentation process. The sliding process is needed to detect the botnet attack activity chain correctly. This paper analyzed the ideal time in the sliding process in traffic data segmentation to detect botnet activity and obtain information about botnet attacks. It aimed to get the optimal time in the sliding process and see its effect on detection accuracy. The test was carried out using a public dataset, namely the CTU-13 dataset, based on the two detection models in previous research. The result showed that the optimal time in the sliding process was 30 minutes in both detection models, with the best scenario detection results of 231 and the best detection accuracy of 97.93%.\",\"PeriodicalId\":122550,\"journal\":{\"name\":\"2022 5th International Conference on Computing and Informatics (ICCI)\",\"volume\":\"31 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2022-03-09\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2022 5th International Conference on Computing and Informatics (ICCI)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/icci54321.2022.9756077\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2022 5th International Conference on Computing and Informatics (ICCI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/icci54321.2022.9756077","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Sliding Time Analysis in Traffic Segmentation for Botnet Activity Detection
Botnets are a threat in a dangerous cyber era. Botnets involve malicious software to attack the system based on instructions from the botmaster. Previous research had introduced a botnet activity detection model, such as using activity time analysis through a sliding time-based traffic segmentation process. However, the introduced model has not analyzed the ideal time in the sliding process in the segmentation process. The sliding process is needed to detect the botnet attack activity chain correctly. This paper analyzed the ideal time in the sliding process in traffic data segmentation to detect botnet activity and obtain information about botnet attacks. It aimed to get the optimal time in the sliding process and see its effect on detection accuracy. The test was carried out using a public dataset, namely the CTU-13 dataset, based on the two detection models in previous research. The result showed that the optimal time in the sliding process was 30 minutes in both detection models, with the best scenario detection results of 231 and the best detection accuracy of 97.93%.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
