P2P僵尸网络研究与进展

计算机科学 ›› 2011, Vol. 38 ›› Issue (Z10): 66-71.

P2P僵尸网络研究与进展

杜勤，吕光丽，苏忠，林繁，张少年

(空军指挥学院网络中心北京100097)

出版日期:2018-11-16 发布日期:2018-11-16
基金资助:
本文受国家自然科学基金项目(61071065)资助。

Research and Development of Peer-to-Peer Botnets

DU Qin,LU Guang-li,SU Zhong,LIN Fan,ZHANG Shao-hua

Online:2018-11-16 Published:2018-11-16

摘要/Abstract

摘要： 由于基于IRC协议的僵尸网络存在单点失效的天然缺陷，越来越多的僵尸网络转而使用非集中式命令与控制信道。基于P2P协议的僵尸网络就是其中最重要的一种。P2P僵尸网络经过10多年的发展，技术已经完全成熟，它们具有更强的弹性和鲁棒性，更难以被清除，被认为是新一代的僵尸网络。阐述了P2P僵尸网络的发展历程，详细分析了功能结构、分类方法和工作过程，介绍了P2P僵尸网络传播模型和跟踪、检测、防御方法的研究进展。

关键词: 网络安全，P2P,僵尸网络，恶意代码，传播模型

Abstract: Because of IRGbased botnets' central point of failure, more and more botnets turn to decentralized Command & Control Channel. Peer-to-Peer protocol based botnet(P2P botnet) is the most important one. After more than 10 years' development, the technology of P2P botnets has been fully mature. They are more resilient and robust, and more difficult to be eliminated. They are considered to be the new generation of botnets. In this paper,the P2P botnet's evolution process was introduced, the functional structure, taxonomy and execution process of P2P botnet were discussed in detail, the propagation model and research development on technology of tracking, detecting and defending methods were proposed.

Key words: Network security, P2P,13otnet, Malware, Propagation model

杜勤，吕光丽，苏忠，林繁，张少年. P2P僵尸网络研究与进展[J]. 计算机科学, 2011, 38(Z10): 66-71. https://doi.org/

DU Qin,LU Guang-li,SU Zhong,LIN Fan,ZHANG Shao-hua. Research and Development of Peer-to-Peer Botnets[J]. Computer Science, 2011, 38(Z10): 66-71. https://doi.org/

参考文献

Metrics

Viewed

Full text

Abstract

Cited

Shared

Discussed