Name
Abstract | ||
|---|---|---|
Skype is one of the most used P2P applications on the Internet: VoIP calls, instant messaging, SMS and other features are provided at a low cost to millions of users. Although Skype is a closed source application, an API allows developers to build custom plugins which interact over the Skype network, taking advantage of its reliability and capability to easily bypass firewalls and NAT devices. Since the protocol is completely undocumented, Skype traffic is particularly hard to analyze and to reverse engineer. We propose a novel botnet model that exploits an overlay network such as Skype to build a parasitic overlay, making it extremely difficult to track the botmaster and disrupt the botnet without damaging legitimate Skype users. While Skype is particularly valid for this purpose due to its abundance of features and its widespread installed base, ourmodel is generically applicable to distributed applications that employ overlay networks to send direct messages between nodes (e.g., peer-to-peer software with messaging capabilities). We are convinced that similar bot-netmodels are likely to appear into the wild in the near future and that the threats they pose should not be underestimated. Our contribution strives to provide the tools to correctly evaluate and understand the possible evolution and deployment of this phenomenon. |
Year | DOI | Venue |
|---|---|---|
2010 | 10.1007/978-3-642-14215-4_5 | DIMVA |
Keywords | Field | DocType |
parasitic overlay,skype network,p2p application,overlay network,deep breath,nat device,novel botnet model,damaging legitimate skype user,messaging capability,instant messaging,cost-effective botnet,skype traffic,reverse engineering,cost effectiveness,p2p | Software deployment,Computer security,Botnet,Computer science,Exploit,Installed base,Plug-in,Overlay network,The Internet,Voice over IP | Conference |
Volume | ISSN | ISBN |
6201 | 0302-9743 | 3-642-14214-1 |
Citations | PageRank | References |
13 | 0.63 | 26 |
Authors | ||
5 | ||
Name | Order | Citations | PageRank |
|---|---|---|---|
| Antonio Nappa | 1 | 254 | 11.01 |
| Fattori, A. | 2 | 94 | 6.19 |
| Marco Balduzzi | 3 | 320 | 17.41 |
| Matteo Dell'Amico | 4 | 177 | 18.46 |
| Lorenzo Cavallaro | 5 | 886 | 52.85 |