LAGRAA, Sofiane, Martin HUSÁK, Hamida SEBA, Satyanarayana VUPPALA, Radu STATE and Moussa OUEDRAOGO. A review on graph-based approaches for network security monitoring and botnet detection. International Journal of Information Security. Springer, 2024, vol. 23, No 1, p. 119-140. ISSN 1615-5262. Available from: https://dx.doi.org/10.1007/s10207-023-00742-7.
Other formats:   BibTeX LaTeX RIS
Basic information
Original name A review on graph-based approaches for network security monitoring and botnet detection
Authors LAGRAA, Sofiane, Martin HUSÁK (203 Czech Republic, guarantor, belonging to the institution), Hamida SEBA, Satyanarayana VUPPALA, Radu STATE and Moussa OUEDRAOGO.
Edition International Journal of Information Security, Springer, 2024, 1615-5262.
Other information
Original language English
Type of outcome Article in a journal
Field of Study 10200 1.2 Computer and information sciences
Country of publisher Germany
Confidentiality degree is not subject to a state or trade secret
WWW URL
Impact factor Impact factor: 3.200 in 2022
Organization unit Institute of Computer Science
Doi http://dx.doi.org/10.1007/s10207-023-00742-7
UT WoS 001062032500001
Keywords in English Graph theory;Machine learning;Network security;Botnet detection;Monitoring;Cybersecurity
Tags J-Q2
Tags International impact, Reviewed
Changed by Changed by: RNDr. Martin Husák, Ph.D., učo 256631. Changed: 20/3/2024 14:22.
Abstract
This survey paper provides a comprehensive overview of recent research and development in network security that uses graphs and graph-based data representation and analytics. The paper focuses on the graph-based representation of network traffic records and the application of graph-based analytics in intrusion detection and botnet detection. The paper aims to answer several questions related to graph-based approaches in network security, including the types of graphs used to represent network security data, the approaches used to analyze such graphs, the metrics used for detection and monitoring, and the reproducibility of existing works. The paper presents a survey of graph models used to represent, store, and visualize network security data, a survey of the algorithms and approaches used to analyze such data, and an enumeration of the most important graph features used for network security analytics for monitoring and botnet detection. The paper also discusses the challenges and limitations of using graph-based approaches in network security and identifies potential future research directions. Overall, this survey paper provides a valuable resource for researchers and practitioners in the field of network security who are interested in using graph-based approaches for analyzing and detecting malicious activities in networks.
Links
EF16_019/0000822, research and development projectName: Centrum excelence pro kyberkriminalitu, kyberbezpečnost a ochranu kritických informačních infrastruktur
PrintDisplayed: 21/7/2024 14:15