Suzan Almutairi scite author profile

Suzan Almutairi

4Publications

26Citation Statements Received

41Citation Statements Given

How they've been cited

How they cite others

Affiliations

Publications

Order By: Most citations

Hybrid Botnet Detection Based on Host and Network Analysis

Almutairi¹,

Mahfoudh

Almutairi³

et al. 2020

Journal of Computer Networks and Communications

View full text Add to dashboard Cite

Botnet is one of the most dangerous cyber-security issues. The botnet infects unprotected machines and keeps track of the communication with the command and control server to send and receive malicious commands. The attacker uses botnet to initiate dangerous attacks such as DDoS, fishing, data stealing, and spamming. The size of the botnet is usually very large, and millions of infected hosts may belong to it. In this paper, we addressed the problem of botnet detection based on network’s flows records and activities in the host. Thus, we propose a general technique capable of detecting new botnets in early phase. Our technique is implemented in both sides: host side and network side. The botnet communication traffic we are interested in includes HTTP, P2P, IRC, and DNS using IP fluxing. HANABot algorithm is proposed to preprocess and extract features to distinguish the botnet behavior from the legitimate behavior. We evaluate our solution using a collection of real datasets (malicious and legitimate). Our experiment shows a high level of accuracy and a low false positive rate. Furthermore, a comparison between some existing approaches was given, focusing on specific features and performance. The proposed technique outperforms some of the presented approaches in terms of accurately detecting botnet flow records within Netflow traces.

show abstract

Vulnerabilities in SDN Due to Separation of Data and Control Planes

Faizullah¹,

Almutairi²

2018

IJCA

View full text Add to dashboard Cite

Tremendous advancements over the past several decades revolutionized the networking research and technological industry, however, it is still dominated and remains hardware based. Such legacy networks are inflexible, hard and costly to scale and manage. Software defined networking (SDN) is a new approach to networking which enable comprehensive network programmability. SDN architecture bifurcates the data and control plane thereby simplifies network management. In this new architecture, the control plane consists of networking intelligence and the policy making ability is moved to a centralized entity called as controller. Commonly, SDN uses OpenFlow as the communication interface between the data and control planes. This separation while providing great opportunities for scalability, also introduces new vulnerabilities. We identify certain scenarios for vulnerabilities in the OpenFlow semantics that can subject the controller to distributed denial of service (DDoS) attack which is unique to SDN due to the new architecture where the control plane is separated from the data plane. We also explore some reactive mechanisms that can detect and help to devise techniques to prevent impending DDoS attack on an SDN controller.

show abstract

Peer to Peer Botnet Detection Based on Network Traffic Analysis

Almutairi¹,

Mahfoudh

Alowibdi

2016

View full text Add to dashboard Cite

Survey of Centralized and Decentralized Access Control Models in Cloud Computing

Almutairi¹,

Alghanmi²,

Monowar³

2021

IJACSA

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

customersupport@researchsolutions.com

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Suzan Almutairi

Hybrid Botnet Detection Based on Host and Network Analysis

Vulnerabilities in SDN Due to Separation of Data and Control Planes

Peer to Peer Botnet Detection Based on Network Traffic Analysis

Survey of Centralized and Decentralized Access Control Models in Cloud Computing

Contact Info

Product

Resources

About