An Adaptive Push-Styled Command and Control Mechanism in Mobile Botnets 被引量：6

An Adaptive Push-Styled Command and Control Mechanism in Mobile Botnets

导出

摘要 The mobile botnet, developed from the traditional PC-based botnets, has become a practical underlying trend. In this paper, we design a mobile botnet, which exploits a novel command and control （CC） strategy named Push-Styled CC. It utilizes Google cloud messaging （GCM） service as the botnet channel. Compared with traditional botnet, Push-Styled CC avoids direct communications between botmasters and bots, which makes mobile botnets more stealthy and resilient. Since mobile devices users are sensitive to battery power and traffic consumption, Push- Styled botnet also applies adaptive network connection strategy to reduce traffic consumption and cost. To prove the efficacy of our design, we implemented the prototype of Push-Style CC in Android. The experiment results show that botnet traffic can be concealed in legal GCM traffic with low traffic cost. The mobile botnet, developed from the traditional PC-based botnets, has become a practical underlying trend. In this paper, we design a mobile botnet, which exploits a novel command and control （CC） strategy named Push-Styled CC. It utilizes Google cloud messaging （GCM） service as the botnet channel. Compared with traditional botnet, Push-Styled CC avoids direct communications between botmasters and bots, which makes mobile botnets more stealthy and resilient. Since mobile devices users are sensitive to battery power and traffic consumption, Push- Styled botnet also applies adaptive network connection strategy to reduce traffic consumption and cost. To prove the efficacy of our design, we implemented the prototype of Push-Style CC in Android. The experiment results show that botnet traffic can be concealed in legal GCM traffic with low traffic cost.

作者 CHEN Wei GONG Peihua YU Le YANG Geng

机构地区 College of Computer

出处《Wuhan University Journal of Natural Sciences》 CAS 2013年第5期427-434,共8页 武汉大学学报（自然科学英文版）

基金 Supported by the National Natural Science Foundation of China (61202353, 61272084, 61272422) Graduate Innovation Foundation of Jiangsu Province (CXLX13_464) Natural Science Foundation of Jiangsu Higher Education Institutions (12KJB520008)

关键词 mobile botnet push style Google cloud messaging （GCM） adaptive connection mobile botnet push style Google cloud messaging （GCM） adaptive connection

分类号 TN91 [电子电信—通信与信息系统]

引文网络
相关文献

参考文献21

1Axelle A. Symbian worm yxes towards mobile botnets [EB/OL]. [2011-06-10]. http://www.fortiguard.com/papers/ EICAR2010_Symbian- Yxes_Towards-Mobile-Botnets.pdf. 被引量：1
2Porras P, Sa~di H, Yegneswaran V. An analysis of the ikee. b iphone botnet[J]. Security and Privacy in Mobile Informa- tion andCommunication Systems, 2010, 47(12): 141-152. 被引量：1
3Lookout Inc. Security alert: Geinimi, sophisticated new an- droid trojan found in wild [EB/OL]. [2010-12-29]. http:// blog.mylookout.com/b log/2010/12/29/geinimi_trojan. 被引量：1
4Google Inc. Google cloud messaging for android [EB/OL]. [2012-08-13 ]. http ://developer. android, com/google/gcrrdindex. html. 被引量：1
5Zhao S, Lee P, Lui J, et al.Cloud-based push-styled mobile botnets: A case study of exploiting the cloud to device mes- saging service [C]//Proeeedings of the 28th Annual Com- puter Security Applications Conference (ACSAC), New Or- leans, Louisiana, New York: ACM Press, 2012:119-128. 被引量：1
6Cui X, Fang B X, Yin L H, et al. Andbot: towards advanced mobile bomets [C]//Proeeedings of the 4th USENIX Con- ference on Large-Scale Exploits and Emergent Threats, set. (LEET' 11). Berkeley: USENIX Association, 2011:11-17. 被引量：1
7Traynor P, Lin M, Ongtang M, et al. Oncellular botnets: measuring the impact of malicious devices on a cellular networkcore [C]//Proc of the 16th A CM Conf on Computer and Communications Security. New York: ACM Press, 2009 223-234. 被引量：1
8Singh K, Sangal S, Jain N, et al. Evaluating bluetooth as a medium for botnet command and control [C]//Proc of the Conf on Detection of Intrusions and Malware, and Vulner- ability Assessment. Berlin: Springer-Verlag, 2010: 61-80. 被引量：1
9Zeng Y, Shin K G, Hu X. Design of SMS commanded-and controlled and P2P-structured mobile botnet. Proceedings of the Fifth ACM Conference on Security and Privacy in Wire- less and Mobile Networks, ser. WISEC' 12. New York: ACM Press, 2012: 137-148. 被引量：1
10Geng G, Xu G, Zhang M, et al. An improved SMS based heterogeneous mobile botnet model [C]//In Proceedings of 1EEE International Conference on Information and Automa- tion (ICIA). New York: IEEE Press, 2011: 198-202. 被引量：1

同被引文献112

1李跃,翟立东,王宏霞,时金桥.一种基于社交网络的移动僵尸网络研究[J].计算机研究与发展,2012,49(S2):1-8. 被引量：10
2SCHMIDT A D, SCHMIDT H G, BATYUK L, et al. Smartphone malware evolution revisited: android next target?[A].Proceeding of 4th International Conference on Malicious and Unwanted Software (MALWARE)[C]. Piscataway, N J, USA, 2009. 1-7. 被引量：1
3PORRAS P, SAIDI H, YEGNESWARAN V. An analysis of the iKee B iPhone botnet[A]. Proceedings of the 2nd International ICST Confer- ence on Security and Privacy on Mobile Information and Communica- tions Systems (Mobisec)[C]. Piscataway, N J, USA, 2010. 141 - 152. 被引量：1
4CUI X, FANG B, YIN L, et al. Andbot: toward sadvancedmo bilebot- nets[A]. Proceedings of the 4th USENIX Conference on Large-Scale Exploits and Emergent Threats[C]. 2011.11. 被引量：1
5ZENG Y, SHIN K G, HU X. Design of SMS commanded-and-con- trolled and P2P-sructured mobile botnets[A]. Proceedings of the Fifth ACM Conference on Security and Privacy in Wireless and Mobile Networks[C]. New York, NY, USA, 2012. 137-148. 被引量：1
6MULL1NER C, MILLER C. Fuzzing the phone in your phone[EB/OL]. http://www.blackhat.com/presentations/bh-usa-09/MILLER/BHUSA0 9-Miller-FuzzingPhone-PAPER. 被引量：1
7MULL1NER C, SEIFERTJ P. Rise of the iBots: owning a telco net- work[A]. Proceedings of the 5th IEEE Intemational Conference on Malicious and Unwanted Software (Malware)[C]. Nancy, France, 2010.71-80. 被引量：1
8SINGH K, SRIVASTAVA A, GIFFIN J, et al. Evaluating email's fea- sibility for botnet command and control[A]. Proceedings of IEEEInternational Conference on Dependable Systems and Networks (DSN)[C]. Piscataway, NJ, USA, 2008.376-385. 被引量：1
9ZHAO S, LEE P P C, LUI J, et aL Cloud-based push-styled mobile botnets: a case study of exploiting the cloud to device messaging ser- vice[A]. Proceedings of the 28th Annual Computer Security Applica- tions Conference[C]. New York, NY, USA, 2012.119-128. 被引量：1
10GU G, ZHANG J, LEE W. BotSniffer: detecting botnet command and control channels in network traffic[A]. Proceedings of the 15th Annual Network and Distributed System Security Symposium (NDSS'08)[C]. San Diego, CA, 2008. 被引量：1

引证文献6

1陈伟,周诗文,殷承宇.流量自适应的移动僵尸网络云控机制研究[J].通信学报,2014,35(11):32-38. 被引量：1
2李娜,杜彦辉,高峰.移动僵尸网络综述[J].信息网络安全,2015(4):19-27. 被引量：4
3李娜,杜彦辉,陈默.基于短地址混淆和谷歌云推送的移动僵尸网络的构建[J].计算机应用,2015,35(6):1698-1704. 被引量：3
4方耀耀,李同刚.面向Android系统的内容推送方法应用研究[J].电脑知识与技术,2016,0(3):28-31. 被引量：2
5陈松健,陈伟,戴成瑞.移动僵尸网络的命令与控制信息隐匿技术[J].武汉大学学报（理学版）,2018,64(2):133-140. 被引量：1
6杨一涛,陈伟,陈松健.僵尸网络控制命令隐写模型及性能分析[J].南昌大学学报（理科版）,2019,43(4):404-408. 被引量：1

二级引证文献11

1范宸瑜.多数据库信息安全技术的应用分析[J].文存阅刊,2018,0(24):46-46.
2夏坤鹏,谢正勇,崔伟.基于IDS报警和rootkit的威胁溯源方法研究[J].信息网络安全,2015(9):231-235. 被引量：1
3唐伟文,曾金全,鲁华伟.僵尸网络对电信运营商的危害与防治[J].邮电设计技术,2016(1):84-88.
4高见,王威,芦天亮.移动僵尸网络研究[J].中国人民公安大学学报（自然科学版）,2016,22(1):61-67. 被引量：2
5柳淑婷,傅梓怡,范亚芹.基于Android的僵尸网络设计与实现[J].吉林大学学报（信息科学版）,2016,34(2):182-185. 被引量：1
6陈松健,陈伟,戴成瑞.移动僵尸网络的命令与控制信息隐匿技术[J].武汉大学学报（理学版）,2018,64(2):133-140. 被引量：1
7徐增勇,饶美丽,韦延方.基于470 MHz无线升级的公交车门控制系统[J].仪表技术与传感器,2018(6):118-121. 被引量：2
8潘峰,王笑天,宋钰涛,丁冬.基于Redis与WebSocket的战场态势实时推送方案设计及实现[J].软件导刊,2018,17(7):143-146. 被引量：8
9沈军彩.用户行为数据分析下的信息推送系统的设计[J].现代电子技术,2017,40(17):158-161. 被引量：12
10杨一涛,陈伟,陈松健.僵尸网络控制命令隐写模型及性能分析[J].南昌大学学报（理科版）,2019,43(4):404-408. 被引量：1

1朱孝蒙,李鸿毅,孙统方.CDMA无线侧的时钟系统故障案例分析[J].山东通信技术,2014,34(3):46-47.
2薛原.GHASH函数在网络加密算法GCM的应用[J].网络安全技术与应用,2009(6):92-94.
3李正福,张峻.C＆C—通信信息事业发展的新阶段[J].现代电信科技,1991(9):1-8.
4程新忠,黄永培.C＆C-PRO超级4合1耳放实战DIY[J].无线电,2006(4):49-50.
5张帆.SMS4-GCM算法的WiMAX数据加密认证方案[J].曲阜师范大学学报（自然科学版）,2013,39(3):57-61.
6范春风.浅析“僵尸网络”[J].大学时代（B版）,2006(2):66-67. 被引量：6
7ZTE Launches the First PC-Based CPT for LTE Networks[J].ZTE Communications,2012,10(4):59-59.
8王育民.通信、计算机与消费电子的结合──C&C&C(下)[J].电子科技,1997,10(4):3-10.
9王育民.通信、计算机与消费电子的结合──C&C&C(上)[J].电子科技,1997,10(3):3-10.
10李海.僵尸病毒明年可能攻击手机网络?[J].信息网络,2008(11):57-57. 被引量：1

Wuhan University Journal of Natural Sciences

2013年第5期

浏览历史

内容加载中请稍等...

An Adaptive Push-Styled Command and Control Mechanism in Mobile Botnets 被引量：6

参考文献21

同被引文献112

引证文献6

二级引证文献11

相关作者

相关机构

相关主题

浏览历史