Intrusion detection system for Botnet attacks in wireless networks using hybrid detection method based on DNS

Abstract

The expansion of defense mechanisms to combat attacks led to the evolution of malwares, which became more structured for the disruption of these new defense barriers. Among the numerous malwares, the Botnets became the bigger cyber threat because of its ability of control and capability of distributed attacks. In wireless networks, the signal propagation through unguided media, facilitates the actions of malware. This vulnerability makes wireless networks susceptible for Botnet attacks, which can establish control of their activities. This article presents a model of Intrusion Detection System for Wireless Networks (WIDS) which aims to expand Botnet detectors by using multi-agent technology, offering a collection of sensors, a preprocessing filter and detection based on signatures and anomaly. © 2013 Springer Science+Business Media.