Issues and challenges in DNS based botnet detection: A survey

被引:47
作者
Singh, Manmeet [1 ,2 ]
Singh, Maninder [1 ]
Kaur, Sanmeet [1 ]
机构
[1] Thapar Univ, Comp Sci & Engn Dept, Patiala, Punjab, India
[2] Baba Ghulam Shah Badshah Univ, Dept Informat Technol & Engn, Rajouri, Jammu & Kashmir, India
关键词
Botnet; Botnet detection; DNS-based Botnet detection; Network Security; DGA; CYBERCRIME; ATTACKS;
D O I
10.1016/j.cose.2019.05.019
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Cybercrimes are evolving on a regular basis and as such these crimes are becoming a greater threat day by day. Earlier these threats were very general and unorganized. In the last decade, these attacks have become highly sophisticated in nature. This higher level of coordination is possible mainly due to botnets, which are clusters of infected hosts controlled remotely by an attacker (botmaster). The number of infected machines is continuously rising, thereby resulting in botnets with over a million infected machines. This powerful capability gives the botmaster a lethal weapon to launch various security attacks. As a result, botnet detection techniques received greater research focus. The Domain Name System (DNS) is a large scale distributed database on the Internet, which is being abused as a botnet communication channel. While there are numerous survey and review papers on botnet detection, there are two survey papers on DNS-based botnet detection which are neither comprehensive nor take into consideration various parameters vital for effective comparison. This survey presents a new classification for DNS-based botnet detection techniques and provides a deep analysis of each technique within the category. (C) 2019 Elsevier Ltd. All rights reserved.
引用
收藏
页码:28 / 52
页数:25
相关论文
共 50 条
[41]   Identifying Fast-Flux Botnet With AGD Names at the Upper DNS Hierarchy [J].
Zang, Xiao-Dong ;
Gong, Jian ;
Mo, Shao-Huang ;
Jakalan, Ahmad ;
Ding, De-Lin .
IEEE ACCESS, 2018, 6 :69713-69727
[42]   A fuzzy pattern-based filtering algorithm for botnet detection [J].
Wang, Kuochen ;
Huang, Chun-Ying ;
Lin, Shang-Jyh ;
Lin, Ying-Dar .
COMPUTER NETWORKS, 2011, 55 (15) :3275-3286
[43]   A survey: contribution of ML & DL to the detection & prevention of botnet attacks [J].
EL Yamani Y. ;
Baddi Y. ;
EL Kamoun N. .
Journal of Reliable Intelligent Environments, 2024, 10 (04) :431-448
[44]   A Visualized Botnet Detection System Based Deep Learning for the Internet of Things Networks of Smart Cities [J].
Vinayakumar, R. ;
Alazab, Mamoun ;
Srinivasan, Sriram ;
Pham, Quoc-Viet ;
Padannayil, Soman Kotti ;
Simran, K. .
IEEE TRANSACTIONS ON INDUSTRY APPLICATIONS, 2020, 56 (04) :4436-4456
[45]   A Review on Taxonomy of Botnet Detection [J].
Panimalar, P. ;
Rameshkumar, K. .
2014 INTERNATIONAL CONFERENCE ON ADVANCES IN ENGINEERING AND TECHNOLOGY (ICAET), 2014,
[46]   Botnet and P2P Botnet Detection Strategies: A Review [J].
Dhayal, Himanshi ;
Kumar, Jitender .
PROCEEDINGS OF THE 2018 IEEE INTERNATIONAL CONFERENCE ON COMMUNICATION AND SIGNAL PROCESSING (ICCSP), 2018, :1077-1082
[47]   Botnet Detection Based on Genetic Neural Network [J].
Yin, Chunyong ;
Awlla, Ardalan Husin ;
Yin, Zhichao ;
Wang, Jin .
INTERNATIONAL JOURNAL OF SECURITY AND ITS APPLICATIONS, 2015, 9 (11) :97-104
[48]   Behavior-based botnet detection in parallel [J].
Wang, Kuochen ;
Huang, Chun-Ying ;
Tsai, Li-Yang ;
Lin, Ying-Dar .
SECURITY AND COMMUNICATION NETWORKS, 2014, 7 (11) :1849-1859
[49]   An explainable botnet detection model based on lightweight graph neural networks [J].
He, Guofeng ;
Zhu, Jianghua ;
Shi, Yinong ;
Yan, Ke ;
Zheng, Xu .
INTERNATIONAL JOURNAL OF COMPUTATIONAL SCIENCE AND ENGINEERING, 2025, 28 (02) :219-231
[50]   IRC botnet detection based on host behavior [J].
Wang, Wei ;
Fang, Bin-Xing ;
Cui, Xiang .
Jisuanji Xuebao/Chinese Journal of Computers, 2009, 32 (10) :1980-1988