A test bed for detection of botnet infections in low data rate tactical networks
Becker, Russell W.
MetadataShow full item record
The propagation of bots into a botnet, and the various malicious activities that could be carried out from within a tactical network, poses a significant threat to network security and tactical operations. This thesis presents a network architecture with the objective of near real-time detection of malicious activity and its propagation within a data rate (bandwidth) limited environment with periodic losses of connectivity without adding significant burden to the network. A test bed is constructed that makes use of an intrusion detection system driven correlation tool, BotHunter, focused on outbound and inbound connections, rather than solely on inbound connections and a honeynet located in a high data rate area of a tactical network. The ability of the proposed architecture to identify malicious activities is validated when both BotHunter and the Honeynet successfully detect a bot infection.
Approved for public release, distribution unlimited
Showing items related by title, author, creator and subject.
Dobrydney, John F. (Monterey, California. Naval Postgraduate School, 2009-09);Current and emerging technologies and equipment, such as unmanned aerial vehicles, ground sensors, networked radios, operator-worn sensor vests, and nanotechnology applications offer warfighters unprecedented command and ...
Scott, David T. (Monterey, California: Naval Postgraduate School, 2014-09);TheNavy's Fleet is in need of tactical voice communication systems that are highly reliable, protected from cyber threats, and able to operate in a denied or degraded environment. Many of theNavy's current systems rely on ...
Joung, Sang Ki; Song, Kwang Sub; Kim, Moon Hwan; Chu, Peter (2018-04-18);Threats of sea mines are increasing due to recent technology development, such as autonomous systems and computer systems with artificial intelligent capability. There are many solutions to solve MCM problems as far as ...