A review of recent Peer-to-Peer botnet detection techniques

Peer-to-Peer (P2P) botnets have emerged as a serious threat against the network security. They are used to carry out various illicit activities like click fraud, DDOS attacks and for information exfiltration. These botnets use distributed concept for command dissemination. These botnets are resilient to dynamic churn and to take-down attempts. Earlier P2P botnet detection techniques have some shortcomings such as they have less accuracy, unable to detect stealthy botnets and advanced botnets using fast-flux networks. In this paper, we list recent P2P botnet detection techniques that overcome the weaknesses of previous techniques with higher detection accuracy. We also discuss various such techniques, their advantages, accuracy and the weaknesses they too are having. However, two or more techniques can be used together to have more accurate and robust P2P botnet detection.

[1]  M. Wilscy,et al.  Fuzzy inference system based on entropy of traffic for bot detection on an endpoint host , 2014, 2014 International Conference on Data Science & Engineering (ICDSE).

[2]  Sharath Chandra Guntuku,et al.  Big Data Analytics framework for Peer-to-Peer Botnet detection using Random Forests , 2014, Inf. Sci..

[3]  Yousof Al-Hammadi,et al.  Botnet detection: A cooperative game theoretical correlation-based model , 2013, 2013 Third International Conference on Communications and Information Technology (ICCIT).

[4]  Guyu Hu,et al.  P2P Botnet Detection Based on Irregular Phased Similarity , 2012, 2012 Second International Conference on Instrumentation, Measurement, Computer, Communication and Control.

[5]  Li Sheng,et al.  A Distributed Botnet Detecting Approach Based on Traffic Flow Analysis , 2012, 2012 Second International Conference on Instrumentation, Measurement, Computer, Communication and Control.

[6]  Kang G. Shin,et al.  Detection of botnets using combined host- and network-level information , 2010, 2010 IEEE/IFIP International Conference on Dependable Systems & Networks (DSN).

[7]  Mrinal Kanti Ghose,et al.  A Framework for P2P Botnet Detection Using SVM , 2012, 2012 International Conference on Cyber-Enabled Distributed Computing and Knowledge Discovery.

[8]  Ping Wang,et al.  Peer-to-Peer Botnets , 2010, Handbook of Information and Communication Security.

[9]  Nasir D. Memon,et al.  Friends of an enemy: identifying local members of peer-to-peer botnets using mutual contacts , 2010, ACSAC '10.

[10]  Bo Liu,et al.  Detecting Parasite P2P Botnet in eMule-like Networks through Quasi-periodicity Recognition , 2011, ICISC.

[11]  Xiapu Luo,et al.  Building a Scalable System for Stealthy P2P-Botnet Detection , 2014, IEEE Transactions on Information Forensics and Security.