Botnet detection system and method for IoT environment, and storage medium

A botnet and environment technology, applied in the field of intrusion detection, can solve problems such as failure to operate normally, and achieve the effect of reducing complexity and reducing complexity

Active Publication Date: 2021-11-16
UNIV OF ELECTRONICS SCI & TECH OF CHINA
View PDF10 Cites 2 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] In view of the problems of the above research, the purpose of the present invention is to provide a system and method for detecting botnets in the IoT environment, so as to solve the problem that the existing botnet detection technology cannot operate normally in the case of limited resources in the IoT environment

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Botnet detection system and method for IoT environment, and storage medium
  • Botnet detection system and method for IoT environment, and storage medium
  • Botnet detection system and method for IoT environment, and storage medium

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0050] The present invention will be further described below in conjunction with the accompanying drawings and specific embodiments.

[0051] The system is deployed for the IoT device RaspberryPi 4B, the open source IoT botnet dataset N-baiot is used as the detection core plug-in training data, and the open source IoT botnet dataset Kitsune:Mirai is used as the simulated network environment data for system description.

[0052] A system for detecting botnets in an IoT environment, including:

[0053] Traffic collector: used to monitor the traffic of monitored IoT devices, and obtain traffic data packets that meet the rules to be detected based on the whitelist mechanism;

[0054] Storage unit: used to store the traffic data packets acquired by the traffic collector;

[0055] Data packet parser: Based on the improved wireless packet capture tool under the linux system, it analyzes the content of the traffic data packet in the storage unit, and obtains IP information after pars...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention discloses a botnet detection system and method for an IoT environment, and belongs to the technical field of intrusion detection. The method comprises the following steps: a flow collector monitoring the flow of monitored IoT equipment, and obtaining a flow data packet conforming to a to-be-detected rule based on a white list mechanism; the storage unit storing a flow data packet acquired by the flow collector; the data packet analyzer analyzing the content in the traffic data packet stored in the storage unit and obtaining IP information after analysis, and the IP information comprising time, a source IP, a destination IP, a source address and a destination address; the feature extractor extracting all statistical features of the IP information and performing feature dimension reduction processing in feature engineering to obtain three statistical features ranked in the front; and the sample detector carrying out malicious behavior judgment detection on the obtained three statistical characteristics based on a detection model constructed by a decision tree algorithm. The botnet detection method and device are used for botnet detection of the IoT environment.

Description

technical field [0001] A system and method for detecting a botnet in an IoT environment, which is used for detecting a botnet in an IoT environment, belongs to the field of intrusion detection technology, and specifically adopts an offline method to design an automated IoT traffic detection system, and can use The detection model of the detection system is updated in a plug-in way. Background technique [0002] IoT devices are showing a momentum of rapid development in today's Internet. Communication technologies such as the Internet of Things significantly surpass the perception of the surrounding environment by traditional technologies, which endow devices with the ability to collect, quantify and understand the surrounding environment. The Internet of Things is one of the fastest growing fields in the history of computers. A survey conducted by CISCO shows that the number of Internet of Things devices is rising every year, exceeding 50 billion in 2020, and 44ZB of data w...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06G06K9/62
CPCH04L63/1416H04L63/1425H04L69/22H04L2463/144G06F18/24323G06F18/214
Inventor 牛伟纳张小松代天赐鲁启杨彭钰杰吴昊
Owner UNIV OF ELECTRONICS SCI & TECH OF CHINA
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap