Abstract
With the growing stickiness of the Internet, numerous automated programs running in terminal facilities (e.g., laptops) tend to keep closely connected to the Internet by repetitively interacting with remote services. It is of fundamental importance to study such repeating behaviors of automated programs in areas like traffic engineering and network monitoring. This paper focuses on repeating behaviors in packet arrivals that are of interest, aiming at a hierarchical characterization of packet arrivals, detection methods and quantitative metrics. To this end, we present a structure-oriented characterization of packet arrivals, which reflects the temporal structure of repeating behaviors at different scales. Based on such characterization, a repeating behavior detection method is proposed by leveraging online-learning prediction, and two novel metrics of repeating behaviors are proposed from different aspects. In addition, a denoising method is developed to enhance the noise-tolerant capability of detection and measurement in face of noises. Experimental results based on real-world traces demonstrate the effectiveness of our proposed approaches in automated program behavior detection and behavioral botnet analysis.
Original language | American English |
---|---|
Title of host publication | 2015 IEEE Conference on Computer Communications (INFOCOM) |
Publisher | IEEE |
Pages | 2461-2469 |
Number of pages | 9 |
ISBN (Electronic) | 978-1-4799-8381-0 |
DOIs | |
State | Published - Aug 24 2015 |
Event | 34th IEEE Annual Conference on Computer Communications and Networks, IEEE INFOCOM 2015 - Hong Kong, Hong Kong Duration: Apr 26 2015 → May 1 2015 |
Conference
Conference | 34th IEEE Annual Conference on Computer Communications and Networks, IEEE INFOCOM 2015 |
---|---|
Country/Territory | Hong Kong |
City | Hong Kong |
Period | 4/26/15 → 5/1/15 |
ASJC Scopus Subject Areas
- General Computer Science
- Electrical and Electronic Engineering
Keywords
- repeating behavior
- temporal structure
- traffic modeling
Disciplines
- Computer Sciences
- Engineering