The original paper is in English. Non-English content has been machine-translated and may contain typographical errors or mistranslations. ex. Some numerals are expressed as "XNUMX".
Copyrights notice
The original paper is in English. Non-English content has been machine-translated and may contain typographical errors or mistranslations. Copyrights notice
Dalam surat ini, kami membangunkan metrik tingkah laku yang dengannya botnet spam boleh dikenal pasti dengan cepat berkenaan dengan blok IP kediaman mereka. Kaedah kami bertujuan untuk operasi kelajuan talian tanpa pemeriksaan mendalam, jadi hanya medan pengepala TCP/IP bagi paket yang lulus diperiksa. Walau bagaimanapun, metrik yang dicadangkan menghasilkan ciri pengendalian penerima (ROC) berkualiti tinggi, dengan kadar pengesanan tinggi dan kadar positif palsu yang rendah.
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Salinan
Sangki YUN, Byungseung KIM, Saewoong BAHK, Hyogon KIM, "Identifying IP Blocks with Spamming Bots by Spatial Distribution" in IEICE TRANSACTIONS on Communications,
vol. E93-B, no. 8, pp. 2188-2190, August 2010, doi: 10.1587/transcom.E93.B.2188.
Abstract: In this letter, we develop a behavioral metric with which spamming botnets can be quickly identified with respect to their residing IP blocks. Our method aims at line-speed operation without deep inspection, so only TCP/IP header fields of the passing packets are examined. However, the proposed metric yields a high-quality receiver operating characteristics (ROC), with high detection rates and low false positive rates.
URL: https://global.ieice.org/en_transactions/communications/10.1587/transcom.E93.B.2188/_p
Salinan
@ARTICLE{e93-b_8_2188,
author={Sangki YUN, Byungseung KIM, Saewoong BAHK, Hyogon KIM, },
journal={IEICE TRANSACTIONS on Communications},
title={Identifying IP Blocks with Spamming Bots by Spatial Distribution},
year={2010},
volume={E93-B},
number={8},
pages={2188-2190},
abstract={In this letter, we develop a behavioral metric with which spamming botnets can be quickly identified with respect to their residing IP blocks. Our method aims at line-speed operation without deep inspection, so only TCP/IP header fields of the passing packets are examined. However, the proposed metric yields a high-quality receiver operating characteristics (ROC), with high detection rates and low false positive rates.},
keywords={},
doi={10.1587/transcom.E93.B.2188},
ISSN={1745-1345},
month={August},}
Salinan
TY - JOUR
TI - Identifying IP Blocks with Spamming Bots by Spatial Distribution
T2 - IEICE TRANSACTIONS on Communications
SP - 2188
EP - 2190
AU - Sangki YUN
AU - Byungseung KIM
AU - Saewoong BAHK
AU - Hyogon KIM
PY - 2010
DO - 10.1587/transcom.E93.B.2188
JO - IEICE TRANSACTIONS on Communications
SN - 1745-1345
VL - E93-B
IS - 8
JA - IEICE TRANSACTIONS on Communications
Y1 - August 2010
AB - In this letter, we develop a behavioral metric with which spamming botnets can be quickly identified with respect to their residing IP blocks. Our method aims at line-speed operation without deep inspection, so only TCP/IP header fields of the passing packets are examined. However, the proposed metric yields a high-quality receiver operating characteristics (ROC), with high detection rates and low false positive rates.
ER -