Conversation-based P2P botnet detection with decision fusion
| dc.contributor.advisor | Ghorbani, Ali | |
| dc.contributor.author | Zhang, Shaojun | |
| dc.date.accessioned | 2023-03-01T16:33:44Z | |
| dc.date.available | 2023-03-01T16:33:44Z | |
| dc.date.issued | 2013 | |
| dc.date.updated | 2016-12-13T00:00:00Z | |
| dc.description.abstract | Botnets have been identified as one of the most dangerous threats through the Internet. A botnet is a collection of compromised computers called zombies or bots controlled by malicious machines called botmasters through the command and control (C&C) channel. Botnets can be used for plenty of malicious behaviours, including DDOS, Spam, stealing sensitive information to name a few, all of which could be very serious threats to parts of the Internet. In this thesis, we propose a peer-to-peer (P2P) botnet detection approach based on 30-second conversation. To the best of our knowledge, this is the first time conversation-based features are used to detect P2P botnets. The features extracted from conversations can differentiate P2P botnet conversations from normal conversations by applying machine learning techniques. Also, feature selection processes are carried out in order to reduce the dimension of the feature vectors. Decision tree (DT) and support vector machine (SVM) are applied to classify the normal conversations and the P2P botnet conversations. Finally, the results from different classifiers are combined based on the probability models in order to get a better result. | |
| dc.description.copyright | © Shaojun Zhang, 2013 | |
| dc.description.note | Electronic Only (UNB thesis number) Thesis 9143 (OCoLC) 960860070 | |
| dc.description.note | M.C.S., University of New Brunswick, Faculty of Computer Science, 2013. | |
| dc.format | text/xml | |
| dc.format.extent | xiv, 122 pages | |
| dc.format.medium | electronic | |
| dc.identifier.oclc | (OCoLC) 960860070 | |
| dc.identifier.other | Thesis 9143 | |
| dc.identifier.uri | https://unbscholar.lib.unb.ca/handle/1882/14109 | |
| dc.language.iso | en_CA | |
| dc.publisher | University of New Brunswick | |
| dc.rights | http://purl.org/coar/access_right/c_abf2 | |
| dc.subject.discipline | Computer Science | |
| dc.subject.lcsh | Cyberterrorism. | |
| dc.subject.lcsh | Computer networks -- Security measures. | |
| dc.subject.lcsh | Peer-to-peer architecture (Computer networks) | |
| dc.subject.lcsh | Support vector machines. | |
| dc.subject.lcsh | Decision trees. | |
| dc.title | Conversation-based P2P botnet detection with decision fusion | |
| dc.type | master thesis | |
| thesis.degree.discipline | Computer Science | |
| thesis.degree.fullname | Master of Computer Science | |
| thesis.degree.grantor | University of New Brunswick | |
| thesis.degree.level | masters | |
| thesis.degree.name | M.C.S. |
Files
Original bundle
1 - 1 of 1