TY - GEN
T1 - An Enhanced Approach For Botnet Intrusion Detection System Based on Machine-Learning Model
AU - Hartono, Lendy Pradhana
AU - Ahmad, Tohari
N1 - Publisher Copyright:
© 2023 IEEE.
PY - 2023
Y1 - 2023
N2 - In this cyber era, the speed of technological advancements is likely linear to the constant threat to information security, one of which is the botnet attack. Recently, botnet advancement has been developing toward nowhere, where it evolves in size and sophistication. Numerous botnet Intrusion Detection Systems (IDS) have been developed, especially one based on network-flow detection. However, the nature of the recent botnet, equipped with advanced code updates, makes it difficult for the IDS to keep track of the botnet attack. Thus, abnormal botnet detection methods are better because they can mark a new or uncharted bot flow. This research proposes a new approach that can detect botnet types. A generic model that consists of network-flow data pre-processing and feature selection is introduced. It is then installed to the pre-known machine learning classification techniques. The model hence uses the CTU-13 dataset to measure the performance of botnet detection. Experimental results show that this proposed work works as intended in botnet detection, and the decision tree algorithm produced the best average detection accuracy of 99.02%.
AB - In this cyber era, the speed of technological advancements is likely linear to the constant threat to information security, one of which is the botnet attack. Recently, botnet advancement has been developing toward nowhere, where it evolves in size and sophistication. Numerous botnet Intrusion Detection Systems (IDS) have been developed, especially one based on network-flow detection. However, the nature of the recent botnet, equipped with advanced code updates, makes it difficult for the IDS to keep track of the botnet attack. Thus, abnormal botnet detection methods are better because they can mark a new or uncharted bot flow. This research proposes a new approach that can detect botnet types. A generic model that consists of network-flow data pre-processing and feature selection is introduced. It is then installed to the pre-known machine learning classification techniques. The model hence uses the CTU-13 dataset to measure the performance of botnet detection. Experimental results show that this proposed work works as intended in botnet detection, and the decision tree algorithm produced the best average detection accuracy of 99.02%.
KW - botnet detection
KW - machine learning-based model
KW - network infrastructure
KW - network security
UR - http://www.scopus.com/inward/record.url?scp=85179844712&partnerID=8YFLogxK
U2 - 10.1109/ICCCNT56998.2023.10307766
DO - 10.1109/ICCCNT56998.2023.10307766
M3 - Conference contribution
AN - SCOPUS:85179844712
T3 - 2023 14th International Conference on Computing Communication and Networking Technologies, ICCCNT 2023
BT - 2023 14th International Conference on Computing Communication and Networking Technologies, ICCCNT 2023
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 14th International Conference on Computing Communication and Networking Technologies, ICCCNT 2023
Y2 - 6 July 2023 through 8 July 2023
ER -