Pattern Analysis and Regressive Linear Measure for Botnet Detection  

作　　者：B.Padmavathi B.Muthukumar 

机构地区：[1]Department of Computer Science and Engineering,Sathyabama Institute of Science and Technology,Chennai,India [2]Department of Computer Science and Engineering,Easwari Engineering College,Chennai,India [3]Department of Computer Science and Engineering,United Institute of Technology,Coimbatore,India

出　　处：《Computer Systems Science & Engineering》2022年第10期119-139,共21页计算机系统科学与工程（英文）

摘　　要：Capturing the distributed platform with remotely controlled compromised machines using botnet is extensively analyzed by various researchers.However,certain limitations need to be addressed efficiently.The provisioning of detection mechanism with learning approaches provides a better solution more broadly by saluting multi-objective constraints.The bots’patterns or features over the network have to be analyzed in both linear and non-linear manner.The linear and non-linear features are composed of high-level and low-level features.The collected features are maintained over the Bag of Features(BoF)where the most influencing features are collected and provided into the classifier model.Here,the linearity and non-linearity of the threat are evaluated with Support Vector Machine(SVM).Next,with the collected BoF,the redundant features are eliminated as it triggers overhead towards the predictor model.Finally,a novel Incoming data Redundancy Elimination-based learning model(RedE-L)is built to classify the network features to provide robustness towards BotNets detection.The simulation is carried out in MATLAB environment,and the evaluation of proposed RedE-L model is performed with various online accessible network traffic dataset(benchmark dataset).The proposed model intends to show better tradeoff compared to the existing approaches like conventional SVM,C4.5,RepTree and so on.Here,various metrics like Accuracy,detection rate,Mathews Correlation Coefficient(MCC),and some other statistical analysis are performed to show the proposed RedE-L model's reliability.The F1-measure is 99.98%,precision is 99.93%,Accuracy is 99.84%,TPR is 99.92%,TNR is 99.94%,FNR is 0.06 and FPR is 0.06 respectively.

关 键 词：BOTNET threat intrusion features linearity and non-linearity redundancy regressive linear measure classification redundancy eliminationbased learning model 

分 类 号：TP393.08[自动化与计算机技术—计算机应用技术]