NSF: Network-Based Spam Filtering Based on On-Line Blacklisting against Spamming Botnets

NSF: Network-Based Spam Filtering Based on On-Line Blacklisting against Spamming Botnets

Although many anti-spam techniques have been developed, they have difficulty in detecting spams whose contents are altered to evade detection and in tracking spammers that are comprised of botnets. There have been a few works to resolve these limitations, but most of them are not appropriate to be d...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Hauptverfasser: Byungseung Kim, Hyogon Kim, Saewoong Bahk
Format: Tagungsbericht
Sprache:eng ; jpn
Schlagworte:
Domain Name System
Electronic mail
Encoding
Information filtering
Information filters
Joining processes
Postal services
TCPIP
Telecommunication traffic
Unsolicited electronic mail
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Although many anti-spam techniques have been developed, they have difficulty in detecting spams whose contents are altered to evade detection and in tracking spammers that are comprised of botnets. There have been a few works to resolve these limitations, but most of them are not appropriate to be deployed at a gateway for online detection. In this paper, we find network-based characteristics that spammers cannot easily distort. Based on the characteristics, we develop an algorithm applying the metrics to a large volume of traffic in real time. The scheme is efficient enough to run at the ingress point as it only needs to inspect the transport information contained in TCP/IP headers of SMTP connections.
ISSN:1930-529X
2576-764X
DOI:10.1109/GLOCOM.2009.5425683