碩士 / 國立成功大學 / 電腦與通信工程研究所 / 102 / As the development of network technology, on the other hand, the botnet also becomes more robust and resilient. It also produce different type of botnet during the development. The P2P botnet has the most complicated structure in these case. It’s hardly to detect by the network behavior analysis in single site. Most of this methods define some feature of the network behavior for detection botnet communication. But these features might not fit for allevery different botnets.
Therefore, we proposed a botnet detection schema method with logistic regression model to automatically choose the features which are suitable for each different botnet. After the statistical analysis, we use the selected features to process distributed co-clustering algorithm in MapReduce to merge gather the traffic with same behavior together and extract result the malicious IPs. Combine these two model to automatically choose corresponding features with each different botnet to detect the P2P botnet.
| Identifer | oai:union.ndltd.org:TW/102NCKU5652005 |
| Date | January 2014 |
| Creators | Chun-LiangLin, 林俊良 |
| Contributors | Ce-Kuen Shieh, 謝錫堃 |
| Source Sets | National Digital Library of Theses and Dissertations in Taiwan |
| Language | en_US |
| Detected Language | English |
| Type | 學位論文 ; thesis |
| Format | 36 |
Page generated in 0.0127 seconds