PASTIC Dspace Repository

BotDet: A System for Real Time Botnet Command and Control Traffic Detection

Show simple item record

dc.contributor.author Ghafir, Ibrahim
dc.contributor.author Jabbar, Sohail
dc.contributor.author Khalid, Shehzad
dc.contributor.author Jaf, Sardar
dc.date.accessioned 2019-11-07T10:39:14Z
dc.date.available 2019-11-07T10:39:14Z
dc.date.issued 2018-06-13
dc.identifier.issn 2169-3536
dc.identifier.uri http://142.54.178.187:9060/xmlui/handle/123456789/990
dc.description.abstract Over the past decade, the digitization of services transformed the healthcare sector leading to a sharp rise in cybersecurity threats. Poor cybersecurity in the healthcare sector, coupled with high value of patient records attracted the attention of hackers. Sophisticated advanced persistent threats and malware have significantly contributed to increasing risks to the health sector. Many recent attacks are attributed to the spread of malicious software, e.g., ransomware or bot malware. Machines infected with bot malware can be used as tools for remote attack or even cryptomining. This paper presents a novel approach, called BotDet, for botnet Command and Control (C&C) traffic detection to defend against malware attacks in critical ultrastructure systems. There are two stages in the development of the proposed system: 1) we have developed four detection modules to detect different possible techniques used in botnet C&C communications and 2) we have designed a correlation framework to reduce the rate of false alarms raised by individual detection modules. Evaluation results show that BotDet balances the true positive rate and the false positive rate with 82.3% and 13.6%, respectively. Furthermore, it proves BotDet capability of real time detection. en_US
dc.language.iso en_US en_US
dc.publisher IEEE Access en_US
dc.subject Medical and Health Sciences en_US
dc.subject Medical Services en_US
dc.subject Command and control systems en_US
dc.subject Health Care en_US
dc.subject Cybersecurity threats en_US
dc.subject Malware attacks en_US
dc.subject Critical ultrastructure systems en_US
dc.subject Botnet C&C communications en_US
dc.subject Critical infrastructure security en_US
dc.subject Healthcare cyber attacks en_US
dc.title BotDet: A System for Real Time Botnet Command and Control Traffic Detection en_US
dc.type Article en_US


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search DSpace


Advanced Search

Browse

My Account