Spam Trapping System: Novel security framework to fight against spam botnets
Title | Spam Trapping System: Novel security framework to fight against spam botnets |
Publication Type | Conference Paper |
Year of Publication | 2014 |
Authors | Derhab, A., Bouras, A., Bin Muhaya, F., Khan, M.K., Yang Xiang |
Conference Name | Telecommunications (ICT), 2014 21st International Conference on |
Date Published | May |
Keywords | airport check-in system, Airports, Charge carrier processes, computational cost, cryptography, defense-in-depth model, dynamic analysis, intrusion detection system, invasive software, Malware, malware bot, prevent-then-detect approach, program diagnostics, sandboxing principle, security framework, spam botnet detection, spam botnets, spam trapping system, static an analysis, STS, unsolicited e-mail, Unsolicited electronic mail, warfare kill zone |
Abstract | In this paper, we inspire from two analogies: the warfare kill zone and the airport check-in system, to tackle the issue of spam botnet detection. We add a new line of defense to the defense-in-depth model called the third line. This line is represented by a security framework, named the Spam Trapping System (STS) and adopts the prevent-then-detect approach to fight against spam botnets. The framework exploits the application sandboxing principle to prevent the spam from going out of the host and detect the corresponding malware bot. We show that the proposed framework can ensure better security against malware bots. In addition, an analytical study demonstrates that the framework offers optimal performance in terms of detection time and computational cost in comparison to intrusion detection systems based on static and dynamic analysis. |
URL | https://ieeexplore.ieee.org/document/6845160/ |
DOI | 10.1109/ICT.2014.6845160 |
Citation Key | 6845160 |
- prevent-then-detect approach
- warfare kill zone
- Unsolicited electronic mail
- unsolicited e-mail
- STS
- static an analysis
- spam trapping system
- spam botnets
- spam botnet detection
- security framework
- sandboxing principle
- program diagnostics
- airport check-in system
- malware bot
- malware
- invasive software
- intrusion detection system
- dynamic analysis
- defense-in-depth model
- Cryptography
- computational cost
- Charge carrier processes
- Airports