| Presentation | 2016-03-03 Detection and Control of DNS-based Botnet Communications by using SDN-Ryu Solution Sebastian Li, Yong Jin, Katsuyoshi Iida, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | Domain Name System (DNS) is the most widely used protocol in the Internet for domain name Resolution. Since DNS provides many fundamental features Internet users would be strenuous without DNS. Recently, there are reports indicating malicious use of DNS to perform Botnet communications. However, since DNS traffic cannot be simply blocked due to its indispensability in the Internet. As such, we would like to propose a method on how to detect and control DNS based botnet communications by monitoring direct outbound DNS queries using OpenFlow Technology. We also constructed a local experimental network and evaluated the prototype system and confirmed that the proposed method worked as we expected. By using our proposed method, it is possible to detect and control some DNS based botnet based communications especially that uses direct outbound DNS traffic. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Botnet / DNS Based Botnet Communication / SDN / Ryu |
| Paper # | SITE2015-61,IA2015-93 |
| Date of Issue | 2016-02-25 (SITE, IA) |
| Conference Information | |
| Committee | IA / SITE / IPSJ-IOT |
|---|---|
| Conference Date | 2016/3/3(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Nijino-Matsubara Hotel (Karatsu-shi, Saga-prefecture) |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | Internet and Information Ethics Education, etc. |
| Chair | Ken-ichi Yoshida(Univ. of Tsukuba) / Noriaki Yoshikai(Nihon Univ.) |
| Vice Chair | Hiroyuki Osaki(Kwansei Gakuin Univ.) / Masahiro Jibiki(NICT) / Yutaka Nakamura(Kyushu Inst. of Tech.) / Hitoshi Okada(NII) / Tetsuya Morizumi(Toyo Networks & System Integration) |
| Secretary | Hiroyuki Osaki(Tokyo Inst. of Tech.) / Masahiro Jibiki(Osaka Univ.) / Yutaka Nakamura(Kanagawa Univ.) / Hitoshi Okada(Kyushu Univ.) / Tetsuya Morizumi |
| Assistant | Yuichiro Hei(KDDI R&D Labs.) / Hiroshi Yamamoto(Ritsumeikan Univ.) / Toshiki Watanabe(NEC) / Takahiro Haga(Gifu Shotoku Gakuen Univ.) |
| Paper Information | |
| Registration To | Technical Committee on Internet Architecture / Technical Committee on Social Implications of Technology and Information Ethics / Special Interest Group on Internet and Operation Technology |
|---|---|
| Language | ENG |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Detection and Control of DNS-based Botnet Communications by using SDN-Ryu Solution |
| Sub Title (in English) | |
| Keyword(1) | Botnet |
| Keyword(2) | DNS Based Botnet Communication |
| Keyword(3) | SDN |
| Keyword(4) | Ryu |
| 1st Author's Name | Sebastian Li |
| 1st Author's Affiliation | Tokyo Institute of Technology(Tokyo Tech) |
| 2nd Author's Name | Yong Jin |
| 2nd Author's Affiliation | Tokyo Institute of Technology(Tokyo Tech) |
| 3rd Author's Name | Katsuyoshi Iida |
| 3rd Author's Affiliation | Tokyo Institute of Technology(Tokyo Tech) |
| Date | 2016-03-03 |
| Paper # | SITE2015-61,IA2015-93 |
| Volume (vol) | vol.115 |
| Number (no) | SITE-481,IA-482 |
| Page | pp.pp.73-78(SITE), pp.73-78(IA), |
| #Pages | 6 |
| Date of Issue | 2016-02-25 (SITE, IA) |