A test bed for detection of botnet infections in low data rate tactical networks
| dc.contributor.advisor | Tummala, Murali | |
| dc.contributor.advisor | McEachen, John | |
| dc.contributor.author | Becker, Russell W. | |
| dc.date.accessioned | 2012-03-14T17:42:33Z | |
| dc.date.available | 2012-03-14T17:42:33Z | |
| dc.date.issued | 2009-09 | |
| dc.identifier.uri | http://hdl.handle.net/10945/4650 | |
| dc.description.abstract | The propagation of bots into a botnet, and the various malicious activities that could be carried out from within a tactical network, poses a significant threat to network security and tactical operations. This thesis presents a network architecture with the objective of near real-time detection of malicious activity and its propagation within a data rate (bandwidth) limited environment with periodic losses of connectivity without adding significant burden to the network. A test bed is constructed that makes use of an intrusion detection system driven correlation tool, BotHunter, focused on outbound and inbound connections, rather than solely on inbound connections and a honeynet located in a high data rate area of a tactical network. The ability of the proposed architecture to identify malicious activities is validated when both BotHunter and the Honeynet successfully detect a bot infection. | en_US |
| dc.description.uri | http://archive.org/details/atestbedfordetec109454650 | |
| dc.format.extent | xvi, 61 p. : ill. ; | en_US |
| dc.publisher | Monterey, California: Naval Postgraduate School | en_US |
| dc.subject.lcsh | Computer network architectures | en_US |
| dc.subject.lcsh | Computer networks | en_US |
| dc.subject.lcsh | Security measures | en_US |
| dc.title | A test bed for detection of botnet infections in low data rate tactical networks | en_US |
| dc.type | Thesis | en_US |
| dc.contributor.secondreader | Garcia, Vicente | |
| dc.contributor.corporate | Naval Postgraduate School (U.S.) | |
| dc.description.service | US Marine Corps (USMC) author. | en_US |
| dc.identifier.oclc | 463483666 | |
| etd.thesisdegree.name | M.S. | en_US |
| etd.thesisdegree.level | Masters | en_US |
| etd.thesisdegree.discipline | Electrical Engineering | en_US |
| etd.thesisdegree.grantor | Naval Postgraduate School | en_US |
| etd.verified | no | en_US |
| dc.description.distributionstatement | Approved for public release; distribution is unlimited. |
Files in this item
This item appears in the following Collection(s)
-
1. Thesis and Dissertation Collection, all items
Publicly releasable NPS Theses, Dissertations, MBA Professional Reports, Joint Applied Projects, Systems Engineering Project Reports and other NPS degree-earning written works.
Related items
Showing items related by title, author, creator and subject.
-
Cyber System Assurance through Improved Network Anomaly Modeling and Detection
(Monterey, California: Naval Postgraduate SchoolMonterey, California. Naval Postgraduate School, 2019-12); NPS-19-N039-AThe objectives of this work were to investigate the source of the dual natures of network traffic (i.e., Gaussian and alpha-stable) in order prove the merit of further development, improvement, and application of non-parametric ... -
Cyber System Assurance through Improved Network Anomaly Modeling and Detection
(Monterey, California: Naval Postgraduate SchoolMonterey, California. Naval Postgraduate School, 2019-12); NPS-19-N039-AThe objectives of this work were to investigate the source of the dual natures of network traffic (i.e., Gaussian and alpha-stable) in order prove the merit of further development, improvement, and application of non-parametric ... -
COTS Solution for Adaptive Communications Paths Using Tactical Handhelds
(Monterey, California: Naval Postgraduate SchoolMonterey, California. Naval Postgraduate School, 2019-12); NPS-19-M244-BCOTS handheld devices have multiple radios (such as Bluetooth, WiFi Direct, WiFi, Cellular 2/3/4/5G) built into them. Using all of these radios simultaneously can provide great flexibility in communications in limited yet ...
