Browsing by Subject "botnet traffic"
Now showing 1 - 1 of 1
Results Per Page
Sort Options
Item Exploring a Service-Based Normal Behaviour Profiling System for Botnet Detection(IEEE, 2017-05) Chen, Weikeng; Luo, Xiao; Zincir-Heywood, A. Nur; Computer Information and Graphics Technology, School of Engineering and TechnologyEffective detection of botnet traffic becomes difficult as the attackers use encrypted payload and dynamically changing port numbers (protocols) to bypass signature based detection and deep packet inspection. In this paper, we build a normal profiling-based botnet detection system using three unsupervised learning algorithms on service-based flow-based data, including self-organizing map, local outlier, and k-NN outlier factors. Evaluations on publicly available botnet data sets show that the proposed system could reach up to 91% detection rate with a false alarm rate of 5%.