Ontological Engineering Approach Towards Botnet Detection in Network Forensics
Journal Title: INTERNATIONAL JOURNAL OF COMPUTERS & TECHNOLOGY - Year 2013, Vol 10, Issue 9
Abstract
The abundance in the usage of Internet, in every arena of life from social to personal, commercial to domestic and other aspects of life as well, leads the rise in cybercrime at an upsetting speed. More illegal activities as a result of cyber crime, reason to tempts many network attacks and threats. Network forensics is the branch of fornesics that deals in the detection of network attacks. Botnet is one of the most common attacks, but hazardos. It  is a network of hacked computers It  involves the capturing, storing and then analysis of the network packets, in order to identify the source of the attack.  Various methods based on this approach for botnet detection are suggested in literature but there is no generalized method to represent the basic methodology used by any of the botnet detection method. With such guidelines, the comparison among the various implementations, a roadmap for the new implementation, development of reusable implementations can be addressed. Accordingly, there is a requirement of a generic framework that can characterize the general methodology followed by any of the botnet detection methods. This paper, review various prevalent methods of botnet detection to extract commonalities among them. A global model for the detection of botnets is represented as ontology. Ontology is used as a means of knowledge representation. The botnet ontology is represented using Web Ontology Language (OWL). OWL is used because it is a language with layered architecture and high expressive power.Â
Authors and Affiliations
Sukhdilpreet Kaur, Amandeep Verma
Keywords
Related Articles
- EP ID EP650242
- DOI 10.24297/ijct.v10i9.1390
- Views 96
- Downloads 0
Enhancing the Security of the GPT Cryptosystem Against Attacks
The concept of Public key cryptosystems based on error correcting codes was invented by McEliece in 1978. In 1991 Gabidulin, Paramonov and Tretjakov proposed a new mversion of the McEliece cryptosystem (GPT) based on max...
AUTOMATIC INITIAL SEGMENTATION OF SPEECH SIGNAL BASED ON SYMMETRIC MATRIX OF DISTANCES
The most common issue of a speech signals analisys and artificial intelligence systems development is determining of temporal and frequency charactristics. That’s because any undetermined signal is defined as a nonline...
Multi-Agent System Overview: Architectural Designing using Practical Approach
A software agent should be autonomous, flexible, robust and social. The increasing importance of the Multi-Agent System (MAS) has led to the greater availability of tools designed to facilitate their creation and use. To...
Ghost-Free High Dynamic Range Imaging Using Histogram Separation and Edge Preserving Denoising
In this paper, we introduce a ghost-free High Dynamic Range imaging algorithm for obtaining ghost-free high dynamicrange (HDR) images. The multiple image fusion based HDR method work only on condition that there is no mo...
ON SOME DOUBLE INTEGRALS INVOLVING -FUNCTION OF TWO VARIABLES AND SPHEROIDAL FUNCTIONS
The present paper evaluates certain double integrals involving -function of two variables [21] and Spherodial functions [23]. These double integrals are of most general character known so far and can be suitably speciali...