The original paper is in English. Non-English content has been machine-translated and may contain typographical errors or mistranslations. ex. Some numerals are expressed as "XNUMX".
Copyrights notice
The original paper is in English. Non-English content has been machine-translated and may contain typographical errors or mistranslations. Copyrights notice
Nesta carta, desenvolvemos uma métrica comportamental com a qual os botnets de spam podem ser rapidamente identificados em relação aos seus blocos de IP residentes. Nosso método visa a operação na velocidade da linha sem inspeção profunda, portanto, apenas os campos do cabeçalho TCP/IP dos pacotes que passam são examinados. No entanto, a métrica proposta produz características operacionais do receptor (ROC) de alta qualidade, com altas taxas de detecção e baixas taxas de falsos positivos.
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Copiar
Sangki YUN, Byungseung KIM, Saewoong BAHK, Hyogon KIM, "Identifying IP Blocks with Spamming Bots by Spatial Distribution" in IEICE TRANSACTIONS on Communications,
vol. E93-B, no. 8, pp. 2188-2190, August 2010, doi: 10.1587/transcom.E93.B.2188.
Abstract: In this letter, we develop a behavioral metric with which spamming botnets can be quickly identified with respect to their residing IP blocks. Our method aims at line-speed operation without deep inspection, so only TCP/IP header fields of the passing packets are examined. However, the proposed metric yields a high-quality receiver operating characteristics (ROC), with high detection rates and low false positive rates.
URL: https://global.ieice.org/en_transactions/communications/10.1587/transcom.E93.B.2188/_p
Copiar
@ARTICLE{e93-b_8_2188,
author={Sangki YUN, Byungseung KIM, Saewoong BAHK, Hyogon KIM, },
journal={IEICE TRANSACTIONS on Communications},
title={Identifying IP Blocks with Spamming Bots by Spatial Distribution},
year={2010},
volume={E93-B},
number={8},
pages={2188-2190},
abstract={In this letter, we develop a behavioral metric with which spamming botnets can be quickly identified with respect to their residing IP blocks. Our method aims at line-speed operation without deep inspection, so only TCP/IP header fields of the passing packets are examined. However, the proposed metric yields a high-quality receiver operating characteristics (ROC), with high detection rates and low false positive rates.},
keywords={},
doi={10.1587/transcom.E93.B.2188},
ISSN={1745-1345},
month={August},}
Copiar
TY - JOUR
TI - Identifying IP Blocks with Spamming Bots by Spatial Distribution
T2 - IEICE TRANSACTIONS on Communications
SP - 2188
EP - 2190
AU - Sangki YUN
AU - Byungseung KIM
AU - Saewoong BAHK
AU - Hyogon KIM
PY - 2010
DO - 10.1587/transcom.E93.B.2188
JO - IEICE TRANSACTIONS on Communications
SN - 1745-1345
VL - E93-B
IS - 8
JA - IEICE TRANSACTIONS on Communications
Y1 - August 2010
AB - In this letter, we develop a behavioral metric with which spamming botnets can be quickly identified with respect to their residing IP blocks. Our method aims at line-speed operation without deep inspection, so only TCP/IP header fields of the passing packets are examined. However, the proposed metric yields a high-quality receiver operating characteristics (ROC), with high detection rates and low false positive rates.
ER -