Abstract
The paper considers an approach intended to investigate botnets and botnet defence using agent-based simulation. We explore various botnet attacks and counteraction against them on the example of defence against Distribute Denial of Service (DDoS) attacks. We represent botnet and defence components as agent teams. Agents are supposed to collect information from various network sources, operate different situational knowledge, and react to actions of other agents. The paper describes the common simulation framework, agent-based simulation environment, and the results of experiments aimed to investigate botnets and DDoS defence mechanisms.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Bailey, M., Cooke, E., Jahanian, F., Xu, Y., Karir, M.: A Survey of Botnet Technology and Defenses. In: The 2009 Cybersecurity Applications & Technology Conference for Homeland Security (2009)
Binkley, J.R., Singh, S.: An algorithm for anomaly-based botnet detection. In: SRUTI 2006, San Jose, CA (2006)
Cohen, P., Levesque, H.J.: Óeamwork, Nous, No. 35 (1991)
Dagon, D., Gu, G., Lee, C.P., Lee, W.: A taxonomy of botnet structures. In: ACSAC 2007, Florida, USA (2007)
Gamer, T., Scharf, M.: Realistic Simulation Environments for IP-based Networks. In: The First International Workshop on OMNeT++, Marseille, France (2008)
Grizzard, J.B., Sharma, V., Nunnery, C., Kang, B.B., Dagon, D.: Peer-to-Peer Botnets: Overview and case study. In: HotBots 2007, Cambridge, MA (2007)
Grosz, B., Kraus, S.: Collaborative Plans for Complex Group Actions. Artificial Intelligence 86(2) (1996)
Gu, G., Perdisci, R., Zhang, J., Lee, W.: BotMiner: Clustering analysis of network traffic for protocol- and structure-independent botnet detection. In: Security 2008, San Jose, CA (2008)
Kotenko, I., Ulanov, A.: Agent Teams in Cyberspace: Security Guards in the Global Internet. In: The International Conference on CYBERWORLDS (2006)
Liu, J., Xiao, Y., Ghaboosi, K., Deng, H., Zhang, J.: Botnet: Classification, Attacks, Detection, Tracing, and Preventive Measures. EURASIP Journal on Wireless Communications and Networking 2009 (2009)
Macal, C.M., North, M.J.: Tutorial on Agent-based Modeling and Simulation. In: The 2005 Winter Simulation Conference (2005)
Marietto, M., David, N., Sichman, J.S., Coelho, H.: Requirements Analysis of Agent-Based Simulation Platforms: State of the Art and New Prospects. In: Sichman, J.S., Bousquet, F., Davidsson, P. (eds.) MABS 2002. LNCS (LNAI), vol. 2581, pp. 125–141. Springer, Heidelberg (2002)
Mirkovic, J., Dietrich, S., Dittrich, D., Reiher, P.: Internet Denial of Service: Attack and Defense Mechanisms. Prentice Hall PTR, Englewood Cliffs (2004)
Mirkovic, J., Robinson, M., Reiher, P., Oikonomou, G.: Distributed Defense Against DDOS Attacks. University of Delaware CIS Department Technical Report (2005)
OMNeT++ Community Site (2010), http://www.omnetpp.org/
Papadopoulos, C., Lindell, R., Mehringer, I., Hussain, A., Govindan, R.: Cossack: Coordinated suppression of simultaneous attacks. DISCEX III (2003)
Strayer, W.T., Lapsely, D., Walsh, R., Livadas, C.: Botnet Detection Based on Network Behavior. In: Advances in Information Security. Botnet Detection, vol. 36 (2008)
Tambe, M., Bowring, E., Jung, H., et al.: Conflicts in teamwork: Hybrids to the rescue. In: AAMAS 2005 (2005)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2010 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Kotenko, I., Konovalov, A., Shorov, A. (2010). Simulation of Botnets: Agent-Based Approach. In: Essaaidi, M., Malgeri, M., Badica, C. (eds) Intelligent Distributed Computing IV. Studies in Computational Intelligence, vol 315. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-15211-5_26
Download citation
DOI: https://doi.org/10.1007/978-3-642-15211-5_26
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-15210-8
Online ISBN: 978-3-642-15211-5
eBook Packages: EngineeringEngineering (R0)