Cooperative Work Systems for the security of digital computing infrastructure Cooperative detection systems for Botnet detection

2012 ◽  
Author(s):  
Yongjian Wang ◽  
Junfeng Xu
Keyword(s):  
Cooperative Work ◽  
Botnet Detection ◽  
Work Systems ◽  
Detection Systems ◽  
Cooperative Detection ◽  
Computing Infrastructure

scholarly journals A Novel Video Steganography-Based Botnet Communication Model in Telegram SNS Messenger

Symmetry ◽  
2021 ◽  
Vol 13 (1) ◽  
pp. 84
Author(s):  
Minkyung Kwak ◽  
Youngho Cho
Keyword(s):  
Social Network ◽  
Image Steganography ◽  
Detection Methods ◽  
Communication Model ◽  
Network Service ◽  
Botnet Detection ◽  
Social Network Service ◽  
Video Steganography ◽  
Detection Systems ◽  
Proposed Model

In botnets, a bot master regularly sends command and control messages (C & C messages) to bots for various purposes, such as ordering its commands to bots and collecting critical data from bots. Although such C & C messages can be encrypted by cryptographic methods to hide them, existing botnet detection mechanisms could detect the existence of botnets by capturing suspicious network traffics between the bot master (or the C & C server) and numerous bots. Recently, steganography-based botnets (stego-botnets) have emerged to make C & C communication traffics look normal to botnet detection systems. In stego-botnets, every C & C message is embedded in a multimedia file, such as an image file by using steganography techniques and shared in Social Network Service (SNS) websites (such as Facebook) or online messengers (such as WeChat or KakaoTalk). Consequently, traditional botnet detection systems without steganography detection methods cannot detect them. Meanwhile, according to our survey, we observed that existing studies on the steganography botnet are limited to use only image steganography techniques, although the video steganography method has some obvious advantages over the image steganography method. By this motivation, in this paper, we study a video steganography-based botnet in Social Network Service (SNS) platforms. We first propose a video steganography botnet model based on SNS messengers. In addition, we design a new payload approach-based video steganography method (DECM: Divide-Embed-Component Method) that can embed much more secret data than existing tools by using two open tools VirtualDub and Stegano. We show that our proposed model can be implemented in the Telegram SNS messenger and conduct extensive experiments by comparing our proposed model with DECM with an existing image steganography-based botnet in terms of C & C communication efficiency and undetectability.

Stochastic Geometry-based Analysis of Joint Radar and Communication-Enabled Cooperative Detection Systems

2021 ◽  
Author(s):  
Dorsaf Ghozlani ◽  
Aymen Omri ◽  
Seifeddine Bouallegue ◽  
Hela Chamkhia ◽  
Ridha Bouallegue
Keyword(s):  
Stochastic Geometry ◽  
Detection Systems ◽  
Cooperative Detection

scholarly journals Construction and Performance Analysis of Image Steganography-based Botnet in KakaoTalk Openchat

Computers ◽  
2019 ◽  
Vol 8 (3) ◽  
pp. 61 ◽  
Author(s):  
Jeon ◽  
Cho
Keyword(s):  
Social Network ◽  
Forensic Analysis ◽  
Image Steganography ◽  
Botnet Detection ◽  
Social Network Service ◽  
Detection Techniques ◽  
Detection Systems ◽  
Digital Forensic ◽  
Communication Reliability ◽  
And Performance

Once a botnet is constructed over the network, a bot master and bots start communicating by periodically exchanging messages, which is known as botnet C&C communication, in order to send botnet commands to bots, collect critical information stored in bots, upgrade software functions of malwares installed in bots, and so on. For this reason, most existing botnet detection techniques focus on monitoring and capturing suspicious communications between the bot master and bots. Meanwhile, botnets continue to evolve to hide their C&C communication. Recently, a novel type of botnet using image steganography techniques and SNS (Social Network Service) platforms, which is known as image steganography-based botnet or stegobotnet, has emerged to make its C&C communications undetectable by existing botnet detection systems. In stegobotnets, image files used in SNSs carry messages (between the bot master and bots) which are hidden in them by using image steganography techniques. In this paper, we first investigate whether major SNS platforms such as KakaoTalk, Facebook, and Twitter can be suitable for constructing image steganography-based botnets. Next, we construct a part of stegobotnet based on KakaoTalk, and conduct extensive experiments including digital forensic analysis (1) to validate stegobotnet C&C communication can be successful in KakaoTalk and (2) to examine its performance in terms of C&C communication reliability.

scholarly journals Hybsync: Nanosecond Wireless Position and Clock Synchronization Based on UWB Communication with Multisensors

2021 ◽  
Vol 2021 ◽  
pp. 1-12
Author(s):  
Pengyu Lei ◽  
Zhitian Li ◽  
Bo Xue ◽  
Haifeng Zhang ◽  
Xudong Zou
Keyword(s):  
High Precision ◽  
Clock Synchronization ◽  
Inertial Sensor ◽  
Cooperative Work ◽  
Two Phase ◽  
Work Systems ◽  
Application Problem ◽  
Deviation Measurement ◽  
Time Information ◽  
Uwb Communication

PNT (positioning, navigation, and timing) is the core functional part of kinds of wireless sensor network, which can provide high-precision timing and positioning services for cooperative work systems. Unfortunately, the mature wireless PNT schemes are generally based on GNSS and other auxiliary sources to complete the high accuracy synchronization process, which cannot be applied to GNSS degraded and denied environments such as mines, underground application. In order to solve the application problem of high-precision wireless PNT, Hybsync—a novel non-GNSS-aided wireless PNT architecture, is proposed in this paper, which integrates the information from the UWB communication, inertial sensor, and camera to achieve great PNT performance. Hybsync improves the accuracy of time deviation measurement by collecting and recording timestamps in hardware layer, and with the coarse/fine synchronization two-phase calibration, Hybsync greatly improves the accuracy of time deviation adjustment, thus providing accurate time information for the whole system. Besides, Hybsync uses the VINS framework to further integrate the real-time information of IMU and camera to complete the multinode positioning service. Under the premise that the cost is much lower than existing solutions, Hybsync can provide nanosecond-level clock synchronization and centimeter-level positioning. Experiments prove that Hybsync supports high-precision clock synchronization and positioning of more than 10 nodes; the maximum clock synchronization error is 3 ns, and the positioning error is 7 cm. It can provide accurate time and position services for cooperative work systems under complex and GNSS-denied conditions.

Sign in / Sign up

Export Citation Format

Share Document