{"title":"Botnet Identification Based on Flow Traffic by Using K-Nearest Neighbor","authors":"D. Gunawan, Tika Hairani, A. Hizriadi","doi":"10.1109/ICACSIS47736.2019.8979738","DOIUrl":null,"url":null,"abstract":"Personal data is the primary target of cybercrime. Robot network or abbreviated as botnet is a program that infects the computers and allows the botnet owner to control the infected computers. The botnet can be controlled to steal personal data of the infected computers, as well as using the computer to other cybercrime purposes. This research aims to identify the botnet in the flow traffic by using K-Nearest Neighbor (KNN). The flow traffic data source is obtained from CTU-13 datasets, which contain the real flow traffic captured by Czech Technical University. As a result, the botnet identification accuracy lies in the range of 75.84% to 97.27%, depends on the scenario and the k value. Although KNN has shown a good accuracy result, several other methods outperform KNN accuracy.","PeriodicalId":165090,"journal":{"name":"2019 International Conference on Advanced Computer Science and information Systems (ICACSIS)","volume":"379 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2019-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2019 International Conference on Advanced Computer Science and information Systems (ICACSIS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICACSIS47736.2019.8979738","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
Personal data is the primary target of cybercrime. Robot network or abbreviated as botnet is a program that infects the computers and allows the botnet owner to control the infected computers. The botnet can be controlled to steal personal data of the infected computers, as well as using the computer to other cybercrime purposes. This research aims to identify the botnet in the flow traffic by using K-Nearest Neighbor (KNN). The flow traffic data source is obtained from CTU-13 datasets, which contain the real flow traffic captured by Czech Technical University. As a result, the botnet identification accuracy lies in the range of 75.84% to 97.27%, depends on the scenario and the k value. Although KNN has shown a good accuracy result, several other methods outperform KNN accuracy.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
