{"id":"https://openalex.org/W2074218814","doi":"https://doi.org/10.1109/malware.2011.6112334","title":"A recoverable hybrid C&amp;amp;C botnet","display_name":"A recoverable hybrid C&amp;amp;C botnet","publication_year":2011,"publication_date":"2011-10-01","ids":{"openalex":"https://openalex.org/W2074218814","doi":"https://doi.org/10.1109/malware.2011.6112334","mag":"2074218814"},"language":"en","primary_location":{"id":"doi:10.1109/malware.2011.6112334","is_oa":false,"landing_page_url":"https://doi.org/10.1109/malware.2011.6112334","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2011 6th International Conference on Malicious and Unwanted Software","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5086981720","display_name":"Chaoge Liu","orcid":"https://orcid.org/0000-0002-8023-3941"},"institutions":[{"id":"https://openalex.org/I139759216","display_name":"Beijing University of Posts and Telecommunications","ror":"https://ror.org/04w9fbh59","country_code":"CN","type":"education","lineage":["https://openalex.org/I139759216"]},{"id":"https://openalex.org/I4210090176","display_name":"Institute of Computing Technology","ror":"https://ror.org/0090r4d87","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210090176"]},{"id":"https://openalex.org/I19820366","display_name":"Chinese Academy of Sciences","ror":"https://ror.org/034t30j35","country_code":"CN","type":"funder","lineage":["https://openalex.org/I19820366"]}],"countries":["CN"],"is_corresponding":true,"raw_author_name":"Chaoge Liu","raw_affiliation_strings":["Beijing University of Posts and Telecommunications, China","Institute of Computing Technology, Chinese Academy of Sciences, China"],"affiliations":[{"raw_affiliation_string":"Beijing University of Posts and Telecommunications, China","institution_ids":["https://openalex.org/I139759216"]},{"raw_affiliation_string":"Institute of Computing Technology, Chinese Academy of Sciences, China","institution_ids":["https://openalex.org/I4210090176","https://openalex.org/I19820366"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5110144289","display_name":"Weiqing Lu","orcid":null},"institutions":[{"id":"https://openalex.org/I4210090176","display_name":"Institute of Computing Technology","ror":"https://ror.org/0090r4d87","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210090176"]},{"id":"https://openalex.org/I19820366","display_name":"Chinese Academy of Sciences","ror":"https://ror.org/034t30j35","country_code":"CN","type":"funder","lineage":["https://openalex.org/I19820366"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Weiqing Lu","raw_affiliation_strings":["Institute of Computing Technology, Chinese Academy of Sciences, China"],"affiliations":[{"raw_affiliation_string":"Institute of Computing Technology, Chinese Academy of Sciences, China","institution_ids":["https://openalex.org/I4210090176","https://openalex.org/I19820366"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100765063","display_name":"Zhiqi Zhang","orcid":"https://orcid.org/0000-0003-1914-9430"},"institutions":[{"id":"https://openalex.org/I139759216","display_name":"Beijing University of Posts and Telecommunications","ror":"https://ror.org/04w9fbh59","country_code":"CN","type":"education","lineage":["https://openalex.org/I139759216"]},{"id":"https://openalex.org/I4210090176","display_name":"Institute of Computing Technology","ror":"https://ror.org/0090r4d87","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210090176"]},{"id":"https://openalex.org/I19820366","display_name":"Chinese Academy of Sciences","ror":"https://ror.org/034t30j35","country_code":"CN","type":"funder","lineage":["https://openalex.org/I19820366"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zhiqi Zhang","raw_affiliation_strings":["Beijing University of Posts and Telecommunications, China","Institute of Computing Technology, Chinese Academy of Sciences, China"],"affiliations":[{"raw_affiliation_string":"Beijing University of Posts and Telecommunications, China","institution_ids":["https://openalex.org/I139759216"]},{"raw_affiliation_string":"Institute of Computing Technology, Chinese Academy of Sciences, China","institution_ids":["https://openalex.org/I4210090176","https://openalex.org/I19820366"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5069526686","display_name":"Peng Liao","orcid":"https://orcid.org/0000-0001-6924-1097"},"institutions":[{"id":"https://openalex.org/I19820366","display_name":"Chinese Academy of Sciences","ror":"https://ror.org/034t30j35","country_code":"CN","type":"funder","lineage":["https://openalex.org/I19820366"]},{"id":"https://openalex.org/I4210090176","display_name":"Institute of Computing Technology","ror":"https://ror.org/0090r4d87","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210090176"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Peng Liao","raw_affiliation_strings":["Institute of Computing Technology, Chinese Academy of Sciences, China"],"affiliations":[{"raw_affiliation_string":"Institute of Computing Technology, Chinese Academy of Sciences, China","institution_ids":["https://openalex.org/I4210090176","https://openalex.org/I19820366"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5055905208","display_name":"Xiang Cui","orcid":"https://orcid.org/0000-0003-4779-4365"},"institutions":[{"id":"https://openalex.org/I4210090176","display_name":"Institute of Computing Technology","ror":"https://ror.org/0090r4d87","country_code":"CN","type":"facility","lineage":["https://openalex.org/I19820366","https://openalex.org/I4210090176"]},{"id":"https://openalex.org/I19820366","display_name":"Chinese Academy of Sciences","ror":"https://ror.org/034t30j35","country_code":"CN","type":"funder","lineage":["https://openalex.org/I19820366"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Xiang Cui","raw_affiliation_strings":["Institute of Computing Technology, Chinese Academy of Sciences, China"],"affiliations":[{"raw_affiliation_string":"Institute of Computing Technology, Chinese Academy of Sciences, China","institution_ids":["https://openalex.org/I4210090176","https://openalex.org/I19820366"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5086981720"],"corresponding_institution_ids":["https://openalex.org/I139759216","https://openalex.org/I19820366","https://openalex.org/I4210090176"],"apc_list":null,"apc_paid":null,"fwci":1.4003,"has_fulltext":false,"cited_by_count":8,"citation_normalized_percentile":{"value":0.824498,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"110","last_page":"118"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11896","display_name":"Opportunistic and Delay-Tolerant Networks","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.935631275177002},{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.7689640522003174},{"id":"https://openalex.org/keywords/robustness","display_name":"Robustness (evolution)","score":0.7249336242675781},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.685379683971405},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.6612840294837952},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.5686551332473755},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.3892989158630371},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.1025221049785614},{"id":"https://openalex.org/keywords/chemistry","display_name":"Chemistry","score":0.0798555314540863}],"concepts":[{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.935631275177002},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.7689640522003174},{"id":"https://openalex.org/C63479239","wikidata":"https://www.wikidata.org/wiki/Q7353546","display_name":"Robustness (evolution)","level":3,"score":0.7249336242675781},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.685379683971405},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.6612840294837952},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.5686551332473755},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3892989158630371},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.1025221049785614},{"id":"https://openalex.org/C185592680","wikidata":"https://www.wikidata.org/wiki/Q2329","display_name":"Chemistry","level":0,"score":0.0798555314540863},{"id":"https://openalex.org/C55493867","wikidata":"https://www.wikidata.org/wiki/Q7094","display_name":"Biochemistry","level":1,"score":0.0},{"id":"https://openalex.org/C104317684","wikidata":"https://www.wikidata.org/wiki/Q7187","display_name":"Gene","level":2,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/malware.2011.6112334","is_oa":false,"landing_page_url":"https://doi.org/10.1109/malware.2011.6112334","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"2011 6th International Conference on Malicious and Unwanted Software","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.46000000834465027,"id":"https://metadata.un.org/sdg/9","display_name":"Industry, innovation and infrastructure"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":20,"referenced_works":["https://openalex.org/W229097380","https://openalex.org/W1594131070","https://openalex.org/W1820098372","https://openalex.org/W1962340579","https://openalex.org/W1966681274","https://openalex.org/W2081185166","https://openalex.org/W2100307718","https://openalex.org/W2103049871","https://openalex.org/W2115734893","https://openalex.org/W2119425658","https://openalex.org/W2128031609","https://openalex.org/W2156186849","https://openalex.org/W2159306446","https://openalex.org/W2160106378","https://openalex.org/W2163471120","https://openalex.org/W2280775762","https://openalex.org/W6635859106","https://openalex.org/W6638648299","https://openalex.org/W6641353988","https://openalex.org/W6678722026"],"related_works":["https://openalex.org/W2294483539","https://openalex.org/W2378449000","https://openalex.org/W2901835651","https://openalex.org/W2883616266","https://openalex.org/W186576250","https://openalex.org/W2002178493","https://openalex.org/W2372254325","https://openalex.org/W3005861778","https://openalex.org/W2185627654","https://openalex.org/W1979706594"],"abstract_inverted_index":{"In":[0],"this":[1],"paper,":[2,134],"we":[3,135],"introduce":[4],"the":[5,91,117,125,140],"possible":[6,137],"design":[7,92],"of":[8,74,93,111,119,127],"such":[9,52],"a":[10,16,68],"botnet":[11],"called":[12],"CoolBot":[13,32,94],"which":[14,79,122],"exploits":[15],"novel":[17],"hybrid":[18,25],"command":[19],"and":[20,27,40,55,97],"control":[21],"(C&C)":[22],"structure":[23],"-":[24,38],"P2P":[26],"URL":[28],"Flux.":[29],"The":[30,109],"proposed":[31],"would":[33],"have":[34],"extremely":[35],"desirable":[36],"features":[37],"robustness":[39],"recoverability,":[41],"that":[42,90],"is,":[43],"it":[44],"could":[45,62],"not":[46],"only":[47],"defend":[48,100],"against":[49,139],"popular":[50],"attacks":[51],"as":[53],"Sybil":[54],"routing":[56],"table":[57],"pollution":[58],"attack":[59],"but":[60],"also":[61],"recover":[63],"its":[64],"C&C":[65],"channel":[66],"in":[67,71],"tolerable":[69],"delay":[70],"case":[72],"most":[73],"critical":[75],"resources":[76],"are":[77],"destroyed,":[78],"promise":[80],"to":[81,99,115],"be":[82],"appealing":[83],"for":[84,106],"botmasters.":[85],"Our":[86],"preliminary":[87],"results":[88],"show":[89],"is":[95,114],"feasible":[96],"hard":[98],"against,":[101],"consequently":[102],"posing":[103],"potential":[104],"threat":[105],"Internet":[107],"security.":[108],"goal":[110],"our":[112,133],"work":[113],"increase":[116],"understanding":[118],"advanced":[120],"botnets":[121],"will":[123],"promote":[124],"development":[126],"more":[128],"efficient":[129],"countermeasures.":[130],"To":[131],"conclude":[132],"suggest":[136],"defenses":[138],"emerging":[141],"threat.":[142]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2019,"cited_by_count":1},{"year":2014,"cited_by_count":1},{"year":2013,"cited_by_count":3}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}