Sroufe, Paul; Phithakkitnukoon, Santi; Dantu, Ram and Cangussu, João
Due to copyright restrictions, this file is not available for public download
Click here to request a copy from the OU Author.
|DOI (Digital Object Identifier) Link:||http://dx.doi.org/doi:10.1109/CCNC.2009.4784781|
|Google Scholar:||Look up in Google Scholar|
Botnets have become the major sources of spamming, which generates massive unwanted traffic on networks. An effective detection mechanism can greatly mitigate the problem. In this paper, we present a novel botnet detection mechanism based on the email "shape" analysis that relies on neither content nor reputation analysis. Shape is our new way of characterizing an email by mimicking human visual inspection. A set of email shapes are derived and then used to generate a botnet signature. Our preliminary results show greater than 80% classification accuracy (without considering email content or reputation analysis). This work investigates the discriminatory power of email shape, for which we believe will be a significant complement to other existing techniques such as a network behavior analysis.
|Item Type:||Conference Item|
|Copyright Holders:||2009 IEEE|
|Funders:||National Science Foundation (NSF)|
|Academic Unit/Department:||Mathematics, Computing and Technology|
|Depositing User:||Santi Phithakkitnukoon|
|Date Deposited:||13 Nov 2012 12:01|
|Last Modified:||13 Nov 2012 16:19|
Actions (login may be required)
|Public: Report issue / request change|