Hades: A Hadoopbased Framework for Detection of PeertoPeer Botnets

dc.contributor.author	Narang, Pratik
dc.date.accessioned	2023-01-07T04:27:04Z
dc.date.available	2023-01-07T04:27:04Z
dc.date.issued	2014
dc.identifier.uri	https://dl.acm.org/doi/pdf/10.5555/2726970.2726990
dc.identifier.uri	http://dspace.bits-pilani.ac.in:8080/xmlui/handle/123456789/8374
dc.description.abstract	This paper presents Hades, a Hadoop-based framework for detection of P2P botnets in an enterprise-level network, which is distributed and scalable by design. The contri- butions of this work are two-fold: Firstly, our work uses the Hadoop-ecosystem to adopt a ‘host-aggregation based’ approach which aggregates behavioral metrics for each Peer- to-Peer (P2P) host seen in network communications, and uses them to distinguish between benign P2P hosts and hosts infected by P2P botnets. Secondly, we propose a distributed data-collection architecture which can monitor inside-to-inside LAN traffic, as opposed to relying solely on the NetFlow information available at a backbone router which cannot see the LAN communications happening in the network.	en_US
dc.language.iso	en	en_US
dc.publisher	ACM Digital Library	en_US
dc.subject	Computer Science	en_US
dc.subject	Network	en_US
dc.subject	Lan Communication	en_US
dc.title	Hades: A Hadoopbased Framework for Detection of PeertoPeer Botnets	en_US
dc.type	Article	en_US

Files in this item

Files	Size	Format	View
There are no files associated with this item.