A USERID-CENTRALIZED RECOVERABLE BOTNET: STRUCTURE RESEARCH AND DEFENSE

	A USERID-CENTRALIZED RECOVERABLE BOTNET: STRUCTURE RESEARCH AND DEFENSE
	Wang, Wei 1,2; Fang, Binxing 1,2; Cui, Xiang 2; Shi, Jinqiao 2
	2010-10-01
发表期刊	INTERNATIONAL JOURNAL OF INNOVATIVE COMPUTING INFORMATION AND CONTROL
ISSN	1349-4198
卷号	6 期号:10 页码:4305-4317
摘要	Nowadays, botnets have become common platforms for many Internet attacks. However, most of current Command and Control (C&C) architectures of botnets suffer from the risk of being shut down or poisoned. Once the C&C channel is disrupted, the whole botnet will become a set of isolated compromised machines. Consequently, considering how to construct a recoverable C&C channel in case it is closed is attractive for botmasters. Most of current research focus on botnet detection and monitor, but these are not enough. Defenders should research new attacks that could be developed by botmasters in the near future. In this paper, a recoverable botnet, extending current C&C channel designs with User Identity (UserID) Addressing, is proposed. It could recover the destroyed C&C channel with acceptable effort and latency which security defenders must pay more attention to. Based on the analysis of the UserID-centralized C&C architecture, possible defenses against this botnet are suggested. Security researchers should concern that traditional shutting down of a botnet may not eliminate the botnet really.
关键词	Botnet Recoverability User identity addressing Defense
收录类别	SCI
语种	英语
资助项目	The National High Technology Research and Development Program of China (863 programs)[2009AA01Z437] ; The National High Technology Research and Development Program of China (863 programs)[2007AA01Z474] ; The National High Technology Research and Development Program of China (863 programs)[2007AA010501]
WOS研究方向	Automation & Control Systems ; Computer Science
WOS类目	Automation & Control Systems ; Computer Science, Artificial Intelligence
WOS记录号	WOS:000282919400004
出版者	ICIC INT
引用统计
文献类型	期刊论文
条目标识符	http://119.78.100.204/handle/2XEOYT63/12209
专题	中国科学院计算技术研究所期刊论文_英文
通讯作者	Wang, Wei
作者单位	1.Harbin Inst Technol, Res Ctr Comp Network & Informat Secur Technol, Harbin 150001, Peoples R China 2.Chinese Acad Sci, Inst Comp Technol, Res Ctr Informat Secur, Beijing 100190, Peoples R China
推荐引用方式 GB/T 7714	Wang, Wei,Fang, Binxing,Cui, Xiang,et al. A USERID-CENTRALIZED RECOVERABLE BOTNET: STRUCTURE RESEARCH AND DEFENSE[J]. INTERNATIONAL JOURNAL OF INNOVATIVE COMPUTING INFORMATION AND CONTROL,2010,6(10):4305-4317.
APA	Wang, Wei,Fang, Binxing,Cui, Xiang,&Shi, Jinqiao.(2010).A USERID-CENTRALIZED RECOVERABLE BOTNET: STRUCTURE RESEARCH AND DEFENSE.INTERNATIONAL JOURNAL OF INNOVATIVE COMPUTING INFORMATION AND CONTROL,6(10),4305-4317.
MLA	Wang, Wei,et al."A USERID-CENTRALIZED RECOVERABLE BOTNET: STRUCTURE RESEARCH AND DEFENSE".INTERNATIONAL JOURNAL OF INNOVATIVE COMPUTING INFORMATION AND CONTROL 6.10(2010):4305-4317.