论文信息 - Detection of fast flux network based social bot using analysis based techniques

Detection of fast flux network based social bot using analysis based techniques

As the technology growing Botmasters are also growing with latest technology (e.g. virus to Botnet and Root kits) using fast flux feature have begun to exploit Social Network Sites (e.g., facebook.com; Twitter.com etc) as their command and control (C&C) infrastructures e.g. Social Bot hacked four lacs facebook accounts alone in Bangalore only in November 2011 and steal 64 lacs password of LinkedIn in June 2012. This paper proposed a novel technique “Analysis Based Detection Techniques (ABDT) ”to detect fast flux service network (FFSN) based Social Bots on OSNs based on presented information on user's profile. It use geographically-dispersed set of proxy hosts to locate the position of the mothership in an abstract and dimensional space and built similarity graph (clustering) for each URL presented to validation checking for each user. This similarity graph describe all users as nodes in a large graph, and build edges when two users are connected based on (1) group users with “similar” textual description together, where similarity is captured by a probabilistic fingerprint. (2) For single destination URL must come from the same Bot. Hence as conclusion, this paper detect FFSN based Social Bot, by combining information obtained in form of similarity graph (clustering) through Social networking users; performing cross validation (to identify normal users) for each cluster and measuring TTL value (time to live) for each user.

G. Aghila | A. K. Tyagi | G. Aghila | Amit Kumar Tyagi

[1] Jun Hu,et al. Detecting and characterizing social spam campaigns , 2010, IMC '10.

[2] International Conference on Data Science & Engineering, ICDSE 2014, Kochi, India, August 26-28, 2014 , 2014, ICDSE.

[3] Guofei Gu,et al. Analyzing spammers' social networks for fun and profit: a case study of cyber criminal ecosystem on twitter , 2012, WWW.

[4] Heejo Lee,et al. Hidden Bot Detection by Tracing Non-human Generated Traffic at the Zombie Host , 2011, ISPEC.

[5] Hahn-Ming Lee,et al. Fast-flux service network detection based on spatial snapshot mechanism for delay-free detection , 2010, ASIACCS '10.

[6] Christopher Krügel,et al. MISHIMA: Multilateration of Internet Hosts Hidden Using Malicious Fast-Flux Agents (Short Paper) , 2011, DIMVA.

[7] Jason Lee,et al. Detection of Fast Flux Service Networks , 2011, AISC.

[8] Dustin Burke,et al. Real-Time Detection of Fast Flux Service Networks , 2009, 2009 Cybersecurity Applications & Technology Conference for Homeland Security.

[9] Lorenzo Martignoni,et al. FluXOR: Detecting and Monitoring Fast-Flux Service Networks , 2008, DIMVA.

[10] Nikita Borisov,et al. Stegobot: A Covert Social Network Botnet , 2011, Information Hiding.

[11] Jun Hu,et al. Detecting and characterizing social spam campaigns , 2010, CCS '10.

[12] Chun-Ying Huang,et al. Fast-Flux Bot Detection in Real Time , 2010, RAID.

[13] Felix C. Freiling,et al. Measuring and Detecting Fast-Flux Service Networks , 2008, NDSS.