日本語フィールド
著者:Kazumasa Yamauchi, Yoshiaki Hori, Kouichi Sakurai題名:Detecting HTTP-Based Botnet Based on Characteristic of the C& C Session Using by SVM発表情報:Proceedings of the 2013 Eighth Asia Joint Conference on Information Security (Asia JCIS 2013), ページ: 63-68キーワード:C& C, HTTP-based botnet, Network security, SVM概要:With the spread of computer, the increase of malwareis a serious problem. In some malware, damage caused by bot net is a serious problem. Botnets perform the attack by remote control. The purpose of the present work is to suppress the bot net activity by detecting the C& C traffic through well-suited observations. There already exists many detection techniques, most of which focus on IRC-based bot net, and very little focus on HTTP-based bot net, even less, which include comparisons between both detection techniques. In this work, we focus on the HTTP-based bot net, and in order to classify normal HTTP session and C& C session, we make use of Support Vector Machine.抄録:With the spread of computer, the increase of malwareis a serious problem. In some malware, damage caused by bot net is a serious problem. Botnets perform the attack by remote control. The purpose of the present work is to suppress the bot net activity by detecting the C& C traffic through well-suited observations. There already exists many detection techniques, most of which focus on IRC-based bot net, and very little focus on HTTP-based bot net, even less, which include comparisons between both detection techniques. In this work, we focus on the HTTP-based bot net, and in order to classify normal HTTP session and C& C session, we make use of Support Vector Machine.英語フィールド
Author:Kazumasa Yamauchi, Yoshiaki Hori, Kouichi SakuraiTitle:Detecting HTTP-Based Botnet Based on Characteristic of the C& C Session Using by SVMAnnouncement information:Proceedings of the 2013 Eighth Asia Joint Conference on Information Security (Asia JCIS 2013), Page: 63-68Keyword:C& C, HTTP-based botnet, Network security, SVMAn abstract:With the spread of computer, the increase of malwareis a serious problem. In some malware, damage caused by bot net is a serious problem. Botnets perform the attack by remote control. The purpose of the present work is to suppress the bot net activity by detecting the C& C traffic through well-suited observations. There already exists many detection techniques, most of which focus on IRC-based bot net, and very little focus on HTTP-based bot net, even less, which include comparisons between both detection techniques. In this work, we focus on the HTTP-based bot net, and in order to classify normal HTTP session and C& C session, we make use of Support Vector Machine.An abstract:With the spread of computer, the increase of malwareis a serious problem. In some malware, damage caused by bot net is a serious problem. Botnets perform the attack by remote control. The purpose of the present work is to suppress the bot net activity by detecting the C& C traffic through well-suited observations. There already exists many detection techniques, most of which focus on IRC-based bot net, and very little focus on HTTP-based bot net, even less, which include comparisons between both detection techniques. In this work, we focus on the HTTP-based bot net, and in order to classify normal HTTP session and C& C session, we make use of Support Vector Machine.