| DC Field | Value | Language |
|---|---|---|
| dc.contributor.author | Jovanović, Đorđe | en_US |
| dc.contributor.author | Vuletić, Pavle V. | en_US |
| dc.date.accessioned | 2024-08-23T10:04:47Z | - |
| dc.date.available | 2024-08-23T10:04:47Z | - |
| dc.date.issued | 2024 | - |
| dc.identifier.issn | 1820-0214 | - |
| dc.identifier.uri | http://researchrepository.mi.sanu.ac.rs/handle/123456789/5342 | - |
| dc.description.abstract | In this paper, we propose a Programmable Intraflow-based IoT Botnet Detection (PI-BODE) system. PI-BODE is based on the detection of the Command and Control (C&C) communication between infected devices and the botmaster. This approach allows detecting malicious communication before any attacks occur. Unlike the majority of existing work, this detection method is based on the analysis of the traffic intraflow statistical parameters. Such an analysis makes the method more scalable and less hardware demanding in operation, while having a higher or equal level of detection accuracy compared to the packet capture based tools and methods. PI-BODE system leverages programmable network elements and Software Defined Networks (SDN) to extract intraflow features from flow time series in real time, while the flows are active. This procedure was verified on two datasets, whose data were gathered during the time span of more than two years: one captured by the authors of the paper and the other, IoT23. | en_US |
| dc.publisher | ComSIS Consotrium, Novi Sad | en_US |
| dc.relation.ispartof | Computer Science and Information Systems : ComSIS | en_US |
| dc.rights | Attribution-NonCommercial-NoDerivatives 4.0 International | * |
| dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/4.0/ | * |
| dc.subject | Botnet detection | IoT malware | Machine learning | programmable networks | en_US |
| dc.title | PI-BODE: Programmable Intraflow-based IoT Botnet Detection system | en_US |
| dc.type | Article | en_US |
| dc.identifier.doi | 10.2298/CSIS211116064J | - |
| dc.identifier.scopus | 2-s2.0-85185690946 | - |
| dc.contributor.affiliation | Computer Science | en_US |
| dc.contributor.affiliation | Mathematical Institute of the Serbian Academy of Sciences and Arts | en_US |
| dc.relation.firstpage | 37 | - |
| dc.relation.lastpage | 56 | - |
| dc.relation.issue | 1 | - |
| dc.relation.volume | 21 | - |
| dc.description.rank | ~M23 | - |
| item.cerifentitytype | Publications | - |
| item.openairecristype | http://purl.org/coar/resource_type/c_18cf | - |
| item.openairetype | Article | - |
| item.grantfulltext | open | - |
| item.fulltext | With Fulltext | - |
| crisitem.author.orcid | 0000-0003-1222-1292 | - |
Files in This Item:
| File | Description | Size | Format | |
|---|---|---|---|---|
| DJovanovic.pdf | 744.31 kB | Adobe PDF | View/Open |
Page view(s)
153
checked on Nov 19, 2024
Download(s)
12
checked on Nov 19, 2024
Google ScholarTM
Check
Altmetric
Altmetric
This item is licensed under a Creative Commons License
