【摘 要】
:
Aim to improve the detection accuracy,anovel peer-to-peerbotnet detection method based on permutation entropy and adaptive information fusion algorithm was proposed.Permutation entropy was utilized to
【机 构】
:
Changchun Institute of Optics,Fine Mechanics and Physics,Chinese Academy of Sciences,Changchun 13003
【出 处】
:
第十二届中国可信计算与信息安全学术会议
论文部分内容阅读
Aim to improve the detection accuracy,anovel peer-to-peerbotnet detection method based on permutation entropy and adaptive information fusion algorithm was proposed.Permutation entropy was utilized to characterize the complexity measure of networktraffic,which did not vary with the structure of peer-to-peer network,peer-to-peer protocol and attacktype.Kalman filter was utilized to detect the abnormalities of the complexity measure.Furthermore,the features of TCP packets were utilized to reduce the negative impact of web applications on botnet detection,especially the web applications that were based on peer-to-peer protocols.To get more accurate information fusion result,an adaptive information fusion algorithm was proposed tofuse the above detection results to get the final detection result,which combined Dempster-Shafer theory and Dezert-Smarandache the-ory by using their superiorities and overcoming their disadvantages.The experimentresultsshow that the proposed method is able to detect peer-to-peer botnet with higher accuracyand stronger robustness.
其他文献
In the trusted testing of cloud platforms,isolation testing of virtual networks is one of the important tasks.The traditional isolation detection method only extracts network con_guration information
The android operating system provides a rich inter-component communication(ICC)method to bring enormous convenience.However,the android ICC also increases security risks.To address this problem,a form
The Internet of Things connects a large number of real objects with the Internet through a variety of sensing technologies and it is a network that implements the concept of connected objects.However,
There are privacy leakage risks and degradation of performance when verifying the integrity of components with existing methods in a cloud.To address the issue,this work proposes a structural integrit
低轨卫星网络具有覆盖范围广、通信功耗小、机动性高等优势,能够作为地基网络的补充网络为海洋、沙漠和深山等地形复杂的区域提供网络服务。针对由低轨卫星网络信道开放、网络拓扑结构动态变化和用户终端海量特点,导致的安全问题、服务质量问题和网络控制中心负载问题,本文提出了一种基于Token 的动态接入认证协议,基于卫星轨迹可预测性和时钟高度同步的特点构造预认证向量,实现了用户的随遇接入和无缝切换。详细的仿真分
Mobile cloud computing(MCC)is becoming an important way of data sharing.It is of great value for people to store and retrieve personal data at anytime and anywhere.Attribute-based encryption(ABE)can s
Searching over encrypted data is a critical operation to enforce the encryption-before-outsourcing mechanism,which is a fundamental solution to protect data privacy in the untrusted cloud environment.
针对数据库驱动的认知无线电网络(Cognitive Radio Networks,CRNs)中存在的严重的位置隐私泄露问题,本文提出了一种基于SpaceTwist 的隐私保护方案。该方案借助查询服务器,以锚点为中心向数据库展开增量近邻查询,以获得锚点周围的主用户可用信道。数据库将查询结果返回给查询服务器,查询服务器根据最大传输功率公式判断次用户周围可用的信道,并根据次用户允许发送的功率进行信道分配
Traditional voting schemes are used for the credit evaluation and authentication.During the voting process,the contents need to be verified through the signature algorithms.Traditional signature schem
With the explosive development of the mobile Internet,the security threats faced by the mobile Internet have grown rapidly in recent years.Since the normal operation of the mobile Internet depends on