Botnet Victim Detection and Notification based on Openflow Switch
碩士 === 國立中央大學 === 資訊工程研究所 === 98 === Over the years, the network developed quickly and constantly. Because the rise of trade networks, data on the network become more and more important. Unfortunately, the rise of internet crime became a big problem at the same time such as Botnet. Botnet have hidde...
Main Authors: | , |
---|---|
Other Authors: | |
Format: | Others |
Language: | zh-TW |
Published: |
2010
|
Online Access: | http://ndltd.ncl.edu.tw/handle/58225684182753417397 |
id |
ndltd-TW-098NCU05392145 |
---|---|
record_format |
oai_dc |
spelling |
ndltd-TW-098NCU053921452016-04-20T04:18:03Z http://ndltd.ncl.edu.tw/handle/58225684182753417397 Botnet Victim Detection and Notification based on Openflow Switch 使用Openflow 交換器偵測Botnet 受害者與通知機制 Shi-Jia Peng 彭士家 碩士 國立中央大學 資訊工程研究所 98 Over the years, the network developed quickly and constantly. Because the rise of trade networks, data on the network become more and more important. Unfortunately, the rise of internet crime became a big problem at the same time such as Botnet. Botnet have hidden attackers, and the characteristics of high flexibility, but also an ability to control multiple computers. This paper describes the IRC-based botnet. First, we explain the botnet behavior and the hard to solve problems for security officer. Then we introduced the NetFPGA card developed by the Stanford University and explained the openflow project features and advantages. These devices are used as a linux gateway to be an efficient firewall. This paper use the NetFPGA card and openflow network project designed by Stanford University to detect bot in the botnet. Assume that normal users browser web everyday, we use openflow switch redirect the bot traffic to a particular page that show the warning information. Then through the network disconnected strategy, we try to let the user know the necessity and urgency. Li-Ming Tseng 曾黎明 2010 學位論文 ; thesis 57 zh-TW |
collection |
NDLTD |
language |
zh-TW |
format |
Others
|
sources |
NDLTD |
description |
碩士 === 國立中央大學 === 資訊工程研究所 === 98 === Over the years, the network developed quickly and constantly. Because the rise
of trade networks, data on the network become more and more important.
Unfortunately, the rise of internet crime became a big problem at the same time such
as Botnet. Botnet have hidden attackers, and the characteristics of high flexibility, but
also an ability to control multiple computers.
This paper describes the IRC-based botnet. First, we explain the botnet behavior
and the hard to solve problems for security officer. Then we introduced the NetFPGA
card developed by the Stanford University and explained the openflow project
features and advantages. These devices are used as a linux gateway to be an efficient
firewall. This paper use the NetFPGA card and openflow network project designed by
Stanford University to detect bot in the botnet. Assume that normal users browser web
everyday, we use openflow switch redirect the bot traffic to a particular page that
show the warning information. Then through the network disconnected strategy, we
try to let the user know the necessity and urgency.
|
author2 |
Li-Ming Tseng |
author_facet |
Li-Ming Tseng Shi-Jia Peng 彭士家 |
author |
Shi-Jia Peng 彭士家 |
spellingShingle |
Shi-Jia Peng 彭士家 Botnet Victim Detection and Notification based on Openflow Switch |
author_sort |
Shi-Jia Peng |
title |
Botnet Victim Detection and Notification based on Openflow Switch |
title_short |
Botnet Victim Detection and Notification based on Openflow Switch |
title_full |
Botnet Victim Detection and Notification based on Openflow Switch |
title_fullStr |
Botnet Victim Detection and Notification based on Openflow Switch |
title_full_unstemmed |
Botnet Victim Detection and Notification based on Openflow Switch |
title_sort |
botnet victim detection and notification based on openflow switch |
publishDate |
2010 |
url |
http://ndltd.ncl.edu.tw/handle/58225684182753417397 |
work_keys_str_mv |
AT shijiapeng botnetvictimdetectionandnotificationbasedonopenflowswitch AT péngshìjiā botnetvictimdetectionandnotificationbasedonopenflowswitch AT shijiapeng shǐyòngopenflowjiāohuànqìzhēncèbotnetshòuhàizhěyǔtōngzhījīzhì AT péngshìjiā shǐyòngopenflowjiāohuànqìzhēncèbotnetshòuhàizhěyǔtōngzhījīzhì |
_version_ |
1718228188420636672 |