{"id":"https://openalex.org/W2914421493","doi":"https://doi.org/10.3390/s19030727","title":"Improving IoT Botnet Investigation Using an Adaptive Network Layer","display_name":"Improving IoT Botnet Investigation Using an Adaptive Network Layer","publication_year":2019,"publication_date":"2019-02-11","ids":{"openalex":"https://openalex.org/W2914421493","doi":"https://doi.org/10.3390/s19030727","mag":"2914421493","pmid":"https://pubmed.ncbi.nlm.nih.gov/30754667"},"language":"en","primary_location":{"id":"doi:10.3390/s19030727","is_oa":true,"landing_page_url":"https://doi.org/10.3390/s19030727","pdf_url":"https://www.mdpi.com/1424-8220/19/3/727/pdf?version=1549885183","source":{"id":"https://openalex.org/S101949793","display_name":"Sensors","issn_l":"1424-8220","issn":["1424-8220"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Sensors","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj","pubmed"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"https://www.mdpi.com/1424-8220/19/3/727/pdf?version=1549885183","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5058398803","display_name":"Jo\u00e3o Marcelo Ceron","orcid":"https://orcid.org/0000-0001-6847-8025"},"institutions":[{"id":"https://openalex.org/I94624287","display_name":"University of Twente","ror":"https://ror.org/006hf6230","country_code":"NL","type":"education","lineage":["https://openalex.org/I94624287"]}],"countries":["NL"],"is_corresponding":true,"raw_author_name":"Jo\u00e3o Marcelo Ceron","raw_affiliation_strings":["DACS, University of Twente, 7522 NB Enschede, The Netherlands"],"raw_orcid":"https://orcid.org/0000-0001-6847-8025","affiliations":[{"raw_affiliation_string":"DACS, University of Twente, 7522 NB Enschede, The Netherlands","institution_ids":["https://openalex.org/I94624287"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5056457869","display_name":"Klaus Steding-Jessen","orcid":null},"institutions":[{"id":"https://openalex.org/I4210162039","display_name":"Brazilian Network Information Center","ror":"https://ror.org/04yh9yy49","country_code":"BR","type":"nonprofit","lineage":["https://openalex.org/I4210162039"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Klaus Steding-Jessen","raw_affiliation_strings":["CERT.br, Brazilian National Computer Emergency Response Team, Brazil, S\u00e3o Paulo 05801-000, Brazil"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"CERT.br, Brazilian National Computer Emergency Response Team, Brazil, S\u00e3o Paulo 05801-000, Brazil","institution_ids":["https://openalex.org/I4210162039"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5042303487","display_name":"Cristine Hoepers","orcid":null},"institutions":[{"id":"https://openalex.org/I4210162039","display_name":"Brazilian Network Information Center","ror":"https://ror.org/04yh9yy49","country_code":"BR","type":"nonprofit","lineage":["https://openalex.org/I4210162039"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Cristine Hoepers","raw_affiliation_strings":["CERT.br, Brazilian National Computer Emergency Response Team, Brazil, S\u00e3o Paulo 05801-000, Brazil"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"CERT.br, Brazilian National Computer Emergency Response Team, Brazil, S\u00e3o Paulo 05801-000, Brazil","institution_ids":["https://openalex.org/I4210162039"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5069321002","display_name":"Lisandro Zambenedetti Granville","orcid":"https://orcid.org/0000-0001-8956-8660"},"institutions":[{"id":"https://openalex.org/I130442723","display_name":"Universidade Federal do Rio Grande do Sul","ror":"https://ror.org/041yk2d64","country_code":"BR","type":"education","lineage":["https://openalex.org/I130442723"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"Lisandro Zambenedetti Granville","raw_affiliation_strings":["UFRGS, Federal University of Rio Grande do Sul, Porto Alegre 91501-970, Brazil"],"raw_orcid":"https://orcid.org/0000-0001-8956-8660","affiliations":[{"raw_affiliation_string":"UFRGS, Federal University of Rio Grande do Sul, Porto Alegre 91501-970, Brazil","institution_ids":["https://openalex.org/I130442723"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5068114948","display_name":"C\u00edntia Borges Margi","orcid":"https://orcid.org/0000-0003-4441-8778"},"institutions":[{"id":"https://openalex.org/I4210142721","display_name":"Hospital Universit\u00e1rio da Universidade de S\u00e3o Paulo","ror":"https://ror.org/0406jsq08","country_code":"BR","type":"healthcare","lineage":["https://openalex.org/I17974374","https://openalex.org/I4210142721"]}],"countries":["BR"],"is_corresponding":false,"raw_author_name":"C\u00edntia Borges Margi","raw_affiliation_strings":["USP, University of S\u00e3o Paulo, S\u00e3o Paulo 05508-010, Brazil"],"raw_orcid":"https://orcid.org/0000-0003-4441-8778","affiliations":[{"raw_affiliation_string":"USP, University of S\u00e3o Paulo, S\u00e3o Paulo 05508-010, Brazil","institution_ids":["https://openalex.org/I4210142721"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":5,"corresponding_author_ids":["https://openalex.org/A5058398803"],"corresponding_institution_ids":["https://openalex.org/I94624287"],"apc_list":{"value":2400,"currency":"CHF","value_usd":2598},"apc_paid":{"value":2400,"currency":"CHF","value_usd":2598},"fwci":7.99,"has_fulltext":true,"cited_by_count":75,"citation_normalized_percentile":{"value":0.97720441,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":99},"biblio":{"volume":"19","issue":"3","first_page":"727","last_page":"727"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11598","display_name":"Internet Traffic Analysis and Secure E-voting","score":0.9994000196456909,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/botnet","display_name":"Botnet","score":0.9902482032775879},{"id":"https://openalex.org/keywords/denial-of-service-attack","display_name":"Denial-of-service attack","score":0.8384485244750977},{"id":"https://openalex.org/keywords/malware","display_name":"Malware","score":0.8208563923835754},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.7376923561096191},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6413324475288391},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.5665377974510193},{"id":"https://openalex.org/keywords/network-security","display_name":"Network security","score":0.49316638708114624},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.4814309775829315},{"id":"https://openalex.org/keywords/block","display_name":"Block (permutation group theory)","score":0.4228234589099884},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.11280503869056702}],"concepts":[{"id":"https://openalex.org/C22735295","wikidata":"https://www.wikidata.org/wiki/Q317671","display_name":"Botnet","level":3,"score":0.9902482032775879},{"id":"https://openalex.org/C38822068","wikidata":"https://www.wikidata.org/wiki/Q131406","display_name":"Denial-of-service attack","level":3,"score":0.8384485244750977},{"id":"https://openalex.org/C541664917","wikidata":"https://www.wikidata.org/wiki/Q14001","display_name":"Malware","level":2,"score":0.8208563923835754},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.7376923561096191},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6413324475288391},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.5665377974510193},{"id":"https://openalex.org/C182590292","wikidata":"https://www.wikidata.org/wiki/Q989632","display_name":"Network security","level":2,"score":0.49316638708114624},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.4814309775829315},{"id":"https://openalex.org/C2777210771","wikidata":"https://www.wikidata.org/wiki/Q4927124","display_name":"Block (permutation group theory)","level":2,"score":0.4228234589099884},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.11280503869056702},{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.0},{"id":"https://openalex.org/C2524010","wikidata":"https://www.wikidata.org/wiki/Q8087","display_name":"Geometry","level":1,"score":0.0}],"mesh":[],"locations_count":7,"locations":[{"id":"doi:10.3390/s19030727","is_oa":true,"landing_page_url":"https://doi.org/10.3390/s19030727","pdf_url":"https://www.mdpi.com/1424-8220/19/3/727/pdf?version=1549885183","source":{"id":"https://openalex.org/S101949793","display_name":"Sensors","issn_l":"1424-8220","issn":["1424-8220"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Sensors","raw_type":"journal-article"},{"id":"pmid:30754667","is_oa":false,"landing_page_url":"https://pubmed.ncbi.nlm.nih.gov/30754667","pdf_url":null,"source":{"id":"https://openalex.org/S4306525036","display_name":"PubMed","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1299303238","host_organization_name":"National Institutes of Health","host_organization_lineage":["https://openalex.org/I1299303238"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Sensors (Basel, Switzerland)","raw_type":null},{"id":"pmh:oai:ris.utwente.nl:openaire_cris_publications/a1454a18-c3c1-4a45-94ff-8f5700dbd061","is_oa":true,"landing_page_url":"https://research.utwente.nl/en/publications/a1454a18-c3c1-4a45-94ff-8f5700dbd061","pdf_url":null,"source":{"id":"https://openalex.org/S4406922991","display_name":"University of Twente Research Information","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Ceron, J M, Steding-Jessen, K, Hoepers, C, Granville, L Z & Margi, C B 2019, 'Improving IoT Botnet Investigation Using an Adaptive Network Layer', Sensors (Switzerland), vol. 19, no. 3, 727. https://doi.org/10.3390/s19030727","raw_type":"info:eu-repo/semantics/publishedVersion"},{"id":"pmh:oai:doaj.org/article:2d46a77b57674c4cac73d9aaaf13331a","is_oa":true,"landing_page_url":"https://doaj.org/article/2d46a77b57674c4cac73d9aaaf13331a","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Sensors, Vol 19, Iss 3, p 727 (2019)","raw_type":"article"},{"id":"pmh:oai:europepmc.org:5384925","is_oa":true,"landing_page_url":"http://europepmc.org/pmc/articles/PMC6386856","pdf_url":null,"source":{"id":"https://openalex.org/S4306400806","display_name":"Europe PMC (PubMed Central)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1303153112","host_organization_name":"European Bioinformatics Institute","host_organization_lineage":["https://openalex.org/I1303153112"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"Text"},{"id":"pmh:oai:mdpi.com:/1424-8220/19/3/727/","is_oa":true,"landing_page_url":"http://dx.doi.org/10.3390/s19030727","pdf_url":null,"source":{"id":"https://openalex.org/S4306400947","display_name":"MDPI (MDPI AG)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I4210097602","host_organization_name":"Multidisciplinary Digital Publishing Institute (Switzerland)","host_organization_lineage":["https://openalex.org/I4210097602"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Sensors","raw_type":"Text"},{"id":"pmh:oai:pubmedcentral.nih.gov:6386856","is_oa":true,"landing_page_url":"https://www.ncbi.nlm.nih.gov/pmc/articles/6386856","pdf_url":null,"source":{"id":"https://openalex.org/S2764455111","display_name":"PubMed Central","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1299303238","host_organization_name":"National Institutes of Health","host_organization_lineage":["https://openalex.org/I1299303238"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Sensors (Basel)","raw_type":"Text"}],"best_oa_location":{"id":"doi:10.3390/s19030727","is_oa":true,"landing_page_url":"https://doi.org/10.3390/s19030727","pdf_url":"https://www.mdpi.com/1424-8220/19/3/727/pdf?version=1549885183","source":{"id":"https://openalex.org/S101949793","display_name":"Sensors","issn_l":"1424-8220","issn":["1424-8220"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":"https://openalex.org/P4310310987","host_organization_name":"Multidisciplinary Digital Publishing Institute","host_organization_lineage":["https://openalex.org/P4310310987"],"host_organization_lineage_names":["Multidisciplinary Digital Publishing Institute"],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Sensors","raw_type":"journal-article"},"sustainable_development_goals":[{"score":0.6399999856948853,"display_name":"Industry, innovation and infrastructure","id":"https://metadata.un.org/sdg/9"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320321091","display_name":"Coordena\u00e7\u00e3o de Aperfei\u00e7oamento de Pessoal de N\u00edvel Superior","ror":"https://ror.org/00x0ma614"}],"has_content":{"pdf":true,"grobid_xml":true},"content_urls":{"pdf":"https://content.openalex.org/works/W2914421493.pdf","grobid_xml":"https://content.openalex.org/works/W2914421493.grobid-xml"},"referenced_works_count":15,"referenced_works":["https://openalex.org/W1669806660","https://openalex.org/W2078623873","https://openalex.org/W2111542531","https://openalex.org/W2161784403","https://openalex.org/W2517042543","https://openalex.org/W2586432806","https://openalex.org/W2733765803","https://openalex.org/W2765982928","https://openalex.org/W2789264396","https://openalex.org/W2794801050","https://openalex.org/W2799758613","https://openalex.org/W2999025526","https://openalex.org/W3122864121","https://openalex.org/W6637397297","https://openalex.org/W6743493502"],"related_works":["https://openalex.org/W2294483539","https://openalex.org/W2378449000","https://openalex.org/W3187581118","https://openalex.org/W2938399969","https://openalex.org/W2616994865","https://openalex.org/W2929621094","https://openalex.org/W1996006176","https://openalex.org/W4285325964","https://openalex.org/W4230824443","https://openalex.org/W2292210693"],"abstract_inverted_index":{"IoT":[0,74],"botnets":[1,126],"have":[2],"been":[3],"used":[4],"to":[5,29,50,115,118,133],"launch":[6],"Distributed":[7],"Denial-of-Service":[8],"(DDoS)":[9],"attacks":[10,117,122],"affecting":[11],"the":[12,17,31,51,68,73,85,88,93,97,105,130,134],"Internet":[13,18],"infrastructure.":[14],"To":[15],"protect":[16],"from":[19],"such":[20],"threats":[21],"and":[22,34,55,107,124],"improve":[23],"security":[24],"mechanisms,":[25],"it":[26,112],"is":[27],"critical":[28],"understand":[30],"botnets'":[32],"intents":[33],"characterize":[35],"their":[36],"behavior.":[37],"Current":[38],"malware":[39,75],"analysis":[40,78],"solutions,":[41],"when":[42],"faced":[43],"with":[44],"IoT,":[45],"present":[46,63],"limitations":[47],"in":[48,76],"regard":[49],"network":[52,56,69,89],"access":[53],"containment":[54],"traffic":[57,70,86],"manipulation.":[58],"In":[59,99],"this":[60],"paper,":[61],"we":[62,103],"an":[64,77],"approach":[65],"for":[66],"handling":[67],"generated":[71],"by":[72,96,129],"environment.":[79],"The":[80],"proposed":[81],"solution":[82],"can":[83],"modify":[84],"at":[87],"layer":[90],"based":[91],"on":[92],"actions":[94],"performed":[95],"malware.":[98],"our":[100],"study":[101],"case,":[102],"investigated":[104],"Mirai":[106],"Bashlite":[108],"botnet":[109,131],"families,":[110],"where":[111],"was":[113],"possible":[114],"block":[116],"other":[119],"systems,":[120],"identify":[121],"targets,":[123],"rewrite":[125],"commands":[127],"sent":[128],"controller":[132],"infected":[135],"devices.":[136]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":9},{"year":2024,"cited_by_count":9},{"year":2023,"cited_by_count":12},{"year":2022,"cited_by_count":10},{"year":2021,"cited_by_count":12},{"year":2020,"cited_by_count":15},{"year":2019,"cited_by_count":6}],"updated_date":"2026-05-21T09:19:25.381259","created_date":"2025-10-10T00:00:00"}