Abstract
Malicious botnets such as Mirai are a major threat to IoT networks regarding cyber security. The Botnet Defense System (BDS) is a network security system based on the concept of “fight fire with fire”, and it uses white-hat botnets to fight against malicious botnets. However, the existing white-hat Worm Launcher of the BDS decides the number of white-hat worms, but it does not consider the white-hat worms’ placement. This paper proposes a novel machine learning (ML)-based white-hat Worm Launcher for tactical response by zoning in the BDS. The concept of zoning is introduced to grasp the malicious botnet spread with bias over the IoT network. This enables the Launcher to divide the network into zones and make tactical responses for each zone. Three tactics for tactical responses for each zone are also proposed. Then, the BDS with the Launcher is modeled by using agent-oriented Petri nets, and the effect of the proposed Launcher is evaluated. The result shows that the proposed Launcher can reduce the number of infected IoT devices by about 30%.
Funder
Japan Society for the Promotion of Science
Subject
Electrical and Electronic Engineering,Biochemistry,Instrumentation,Atomic and Molecular Physics, and Optics,Analytical Chemistry
Reference34 articles.
1. A survey of DDoS attacking techniques and defence mechanisms in the IoT network
2. Understanding the mirai botnet;Antonakakis;Proceedings of the 26th USENIX Security Symposium (SEC‘17),2017
3. An indepth analysis of the mirai botnet;Margolis;Proceedings of the 2017 International Conference on Software Security and Assurance (ICSSA),2017
4. The evolution of bashlite and mirai iot botnets;Marzano;Proceedings of the 2018 IEEE Symposium on Computers and Communications (ISCC),2018
5. OVH Suffers 1.1 Tbps DDoS AttackHttps://www.scmagazine.com/news/ddos/ovh-suffers-massive-1-1tbps-ddos-attack
Cited by
8 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献