Analyzing the Effect of Network Traffic Segmentation on the Accuracy of Botnet Activity Detection

Muhammad Aidiel Rachman Putra, Umi Laili Yuhana, Tohari Ahmad, Dandy Pramana Hostiadi

Research output: Chapter in Book/Report/Conference proceedingConference contributionpeer-review

3 Citations (Scopus)

Abstract

Botnet is known as a dangerous threat in computer networks. Malicious activities from bots include phishing, sending spam messages, click misrepresentation, spreading malicious programming and activities of Distributed Denial of Service (DDoS) attacks. Thus, it needs to be handled appropriately. Some research proposed a botnet detection model using segmentation analysis on network traffic data. However, it has not shown the optimal segmentation time and analyzed the effect of the segmentation process on increasing detection accuracy. This paper proposes a Botnet activity detection model using machine learning classification by involving the segmentation process. The proposed classification model contributes to the segmentation analysis process to obtain the optimal traffic segment and segment time. The purpose of the proposed model is to analyze the segmentation process to increase the accuracy of Botnet activity detection. The results of testing on two different datasets show that the classification model using segmentation can increase the detection accuracy of Botnet activity. Two classification algorithms that can produce the best detection accuracy are Random Forest of 99.95% and Decision Tree algorithm of 99.92%. This accuracy value is higher than previous research by testing using the same classification algorithm and dataset.

Original languageEnglish
Title of host publicationProceeding of the International Conference on Computer Engineering, Network and Intelligent Multimedia, CENIM 2022
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages321-326
Number of pages6
ISBN (Electronic)9781665476508
DOIs
Publication statusPublished - 2022
Event2022 International Conference on Computer Engineering, Network and Intelligent Multimedia, CENIM 2022 - Surabaya, Indonesia
Duration: 22 Nov 202223 Nov 2022

Publication series

NameProceeding of the International Conference on Computer Engineering, Network and Intelligent Multimedia, CENIM 2022

Conference

Conference2022 International Conference on Computer Engineering, Network and Intelligent Multimedia, CENIM 2022
Country/TerritoryIndonesia
CitySurabaya
Period22/11/2223/11/22

Keywords

  • Intrusion Detection System
  • botnet detection
  • network infrastructure
  • network security
  • segmentation traffic

Fingerprint

Dive into the research topics of 'Analyzing the Effect of Network Traffic Segmentation on the Accuracy of Botnet Activity Detection'. Together they form a unique fingerprint.

Cite this