{"id":"https://openalex.org/W2263865046","doi":"https://doi.org/10.1145/2833258.2833310","title":"DGA Botnet detection using Collaborative Filtering and Density-based Clustering","display_name":"DGA Botnet detection using Collaborative Filtering and Density-based Clustering","publication_year":2015,"publication_date":"2015-11-18","ids":{"openalex":"https://openalex.org/W2263865046","doi":"https://doi.org/10.1145/2833258.2833310","mag":"2263865046"},"language":"en","primary_location":{"id":"doi:10.1145/2833258.2833310","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2833258.2833310","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Sixth International Symposium on Information and Communication Technology","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5061052037","display_name":"Trung-Duc Nguyen","orcid":null},"institutions":[{"id":"https://openalex.org/I94518387","display_name":"Hanoi University of Science and Technology","ror":"https://ror.org/04nyv3z04","country_code":"VN","type":"education","lineage":["https://openalex.org/I94518387"]}],"countries":["VN"],"is_corresponding":false,"raw_author_name":"Trung-Duc Nguyen","raw_affiliation_strings":["Hanoi University of Sience and Technology, 1, Dai Co Viet Street, Hanoi, Vietnam"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Hanoi University of Sience and Technology, 1, Dai Co Viet Street, Hanoi, Vietnam","institution_ids":["https://openalex.org/I94518387"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5039934167","display_name":"Tuan\u2010Dung Cao","orcid":"https://orcid.org/0000-0002-3661-9142"},"institutions":[{"id":"https://openalex.org/I94518387","display_name":"Hanoi University of Science and Technology","ror":"https://ror.org/04nyv3z04","country_code":"VN","type":"education","lineage":["https://openalex.org/I94518387"]}],"countries":["VN"],"is_corresponding":false,"raw_author_name":"Tuan-Dung CAO","raw_affiliation_strings":["Hanoi University of Sience and Technology, 1, Dai Co Viet Street, Hanoi, Vietnam"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Hanoi University of Sience and Technology, 1, Dai Co Viet Street, Hanoi, Vietnam","institution_ids":["https://openalex.org/I94518387"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5071030088","display_name":"Linh-Giang Nguyen","orcid":null},"institutions":[{"id":"https://openalex.org/I94518387","display_name":"Hanoi University of Science and Technology","ror":"https://ror.org/04nyv3z04","country_code":"VN","type":"education","lineage":["https://openalex.org/I94518387"]}],"countries":["VN"],"is_corresponding":false,"raw_author_name":"Linh-Giang Nguyen","raw_affiliation_strings":["Hanoi University of Science and Technology, 1, Dai Co Viet street, Hanoi, Vietnam"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Hanoi University of Science and Technology, 1, Dai Co Viet street, Hanoi, Vietnam","institution_ids":["https://openalex.org/I94518387"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":2.8052,"has_fulltext":false,"cited_by_count":21,"citation_normalized_percentile":{"value":0.91741058,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":99},"biblio":{"volume":null,"issue":null,"first_page":"203","last_page":"209"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11644","display_name":"Spam and Phishing Detection","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9993000030517578,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.9789354205131531},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7654082775115967},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.68730628490448},{"id":"https://openalex.org/keywords/cluster-analysis","display_name":"Cluster analysis","score":0.6171555519104004},{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.5969302654266357},{"id":"https://openalex.org/keywords/phishing","display_name":"Phishing","score":0.5201026201248169},{"id":"https://openalex.org/keywords/collaborative-filtering","display_name":"Collaborative filtering","score":0.48167097568511963},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.47313132882118225},{"id":"https://openalex.org/keywords/domain","display_name":"Domain (mathematical analysis)","score":0.47034528851509094},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4617602527141571},{"id":"https://openalex.org/keywords/server","display_name":"Server","score":0.44001027941703796},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.40668708086013794},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.3408561944961548},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.2558704614639282},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.25374311208724976},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.19026419520378113},{"id":"https://openalex.org/keywords/recommender-system","display_name":"Recommender system","score":0.13866406679153442}],"concepts":[{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.9789354205131531},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7654082775115967},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.68730628490448},{"id":"https://openalex.org/C73555534","wikidata":"https://www.wikidata.org/wiki/Q622825","display_name":"Cluster analysis","level":2,"score":0.6171555519104004},{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.5969302654266357},{"id":"https://openalex.org/C83860907","wikidata":"https://www.wikidata.org/wiki/Q135005","display_name":"Phishing","level":3,"score":0.5201026201248169},{"id":"https://openalex.org/C21569690","wikidata":"https://www.wikidata.org/wiki/Q94702","display_name":"Collaborative filtering","level":3,"score":0.48167097568511963},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.47313132882118225},{"id":"https://openalex.org/C36503486","wikidata":"https://www.wikidata.org/wiki/Q11235244","display_name":"Domain (mathematical analysis)","level":2,"score":0.47034528851509094},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4617602527141571},{"id":"https://openalex.org/C93996380","wikidata":"https://www.wikidata.org/wiki/Q44127","display_name":"Server","level":2,"score":0.44001027941703796},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.40668708086013794},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3408561944961548},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.2558704614639282},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.25374311208724976},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.19026419520378113},{"id":"https://openalex.org/C557471498","wikidata":"https://www.wikidata.org/wiki/Q554950","display_name":"Recommender system","level":2,"score":0.13866406679153442},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/2833258.2833310","is_oa":false,"landing_page_url":"https://doi.org/10.1145/2833258.2833310","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the Sixth International Symposium on Information and Communication Technology","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.550000011920929,"display_name":"Reduced inequalities","id":"https://metadata.un.org/sdg/10"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320323346","display_name":"B\u1ed9 Gi\u00e1o d\u1ee5c v\u00e0 \u00d0\u00e0o t\u1ea1o","ror":"https://ror.org/00drv3378"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":13,"referenced_works":["https://openalex.org/W80155331","https://openalex.org/W196740607","https://openalex.org/W1518047474","https://openalex.org/W1561983441","https://openalex.org/W1775772884","https://openalex.org/W1954903228","https://openalex.org/W2100307718","https://openalex.org/W2113344319","https://openalex.org/W2114996745","https://openalex.org/W2136495567","https://openalex.org/W2401054255","https://openalex.org/W2591856843","https://openalex.org/W4233802931"],"related_works":["https://openalex.org/W3005900565","https://openalex.org/W2517209920","https://openalex.org/W1926916177","https://openalex.org/W3097920715","https://openalex.org/W2066689719","https://openalex.org/W2034225143","https://openalex.org/W4280529194","https://openalex.org/W1017954560","https://openalex.org/W2313847479","https://openalex.org/W4321609369"],"abstract_inverted_index":{"In":[0],"recent":[1],"years,":[2],"the":[3,9,55,121,162],"botnet":[4,77],"phenomenon":[5],"is":[6,88,140],"one":[7],"of":[8,21,27,42,66,113,126,164,168,172],"most":[10],"dangerous":[11],"threat":[12],"to":[13,49,99,129,142],"Internet":[14],"security,":[15],"which":[16],"supports":[17],"a":[18,63,84,96,111,165],"wide":[19],"range":[20],"criminal":[22],"activities,":[23],"including":[24],"distributed":[25],"denial":[26],"service":[28],"(DDoS)":[29],"attacks,":[30],"click":[31],"fraud,":[32],"phishing,":[33],"malware":[34],"distribution,":[35],"spam":[36],"emails,":[37],"etc.":[38],"An":[39],"increasing":[40],"number":[41,65],"botnets":[43,102],"use":[44],"Domain":[45],"Generation":[46],"Algorithms":[47],"(DGAs)":[48],"avoid":[50],"detection":[51],"and":[52,60,73,90,106,115,132,175],"exclusion":[53],"by":[54],"traditional":[56],"methods.":[57],"By":[58],"dynamically":[59],"frequently":[61],"generating":[62],"large":[64],"random":[67],"domain":[68,87,127],"names":[69,128],"for":[70],"candidate":[71],"command":[72],"control":[74],"(C&C)":[75],"server,":[76],"can":[78],"be":[79],"still":[80],"survive":[81],"even":[82],"when":[83],"C&C":[85],"server":[86],"identified":[89],"taken":[91],"down.":[92],"This":[93],"paper":[94],"presents":[95],"novel":[97],"method":[98],"detect":[100],"DGA":[101],"using":[103],"Collaborative":[104,136],"Filtering":[105,137],"Density-Based":[107],"Clustering.":[108],"We":[109,155],"propose":[110],"combination":[112],"clustering":[114],"classification":[116],"algorithm":[117],"that":[118],"relies":[119],"on":[120],"similarity":[122],"in":[123,146],"characteristic":[124],"distribution":[125],"remove":[130],"noise":[131],"group":[133],"similar":[134],"domains.":[135],"(CF)":[138],"technique":[139],"applied":[141],"find":[143],"out":[144,151,161],"bots":[145],"each":[147],"botnet,":[148],"help":[149],"finding":[150],"offline":[152],"malwares":[153],"infected-machine.":[154],"implemented":[156],"our":[157],"prototype":[158],"system,":[159],"carried":[160],"analysis":[163],"huge":[166],"amount":[167],"DNS":[169],"traffic":[170],"log":[171],"Viettel":[173],"Group":[174],"obtain":[176],"positive":[177],"results.":[178]},"counts_by_year":[{"year":2024,"cited_by_count":1},{"year":2022,"cited_by_count":3},{"year":2021,"cited_by_count":4},{"year":2020,"cited_by_count":1},{"year":2019,"cited_by_count":4},{"year":2018,"cited_by_count":6},{"year":2016,"cited_by_count":2}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}