网络与信息安全学报 ›› 2021, Vol. 7 ›› Issue (4): 30-41.doi: 10.11959/j.issn.2096-109x.2021070

• 专栏Ⅰ:网络攻防技术 • 上一篇    下一篇

基于智能合约的高对抗性僵尸网络研究

赵昊, 舒辉, 康绯, 邢颖   

  1. 数学工程与先进计算国家重点实验室,河南 郑州 450001
  • 修回日期:2021-05-17 出版日期:2021-08-01 发布日期:2021-08-01
  • 作者简介:赵昊(1993− ),男,浙江诸暨人,数学工程与先进计算国家重点实验室博士生,主要研究方向为信息安全、网络攻击行为分析
    舒辉(1974− ),男,江苏盐城人,博士,数学工程与先进计算国家重点实验室教授、博士生导师,主要研究方向为网络安全、嵌入式系统分析与信息安全
    康绯(1972− ),女,河南周口人,数学工程与先进计算国家重点实验室教授,主要研究方向为网络信息安全
    邢颖(1988− ),女,河南周口人,数学工程与先进计算国家重点实验室博士生,主要研究方向为机器学习、安全检测
  • 基金资助:
    国家重点研发计划(2019QY1305)

High resistance botnet based on smart contract

Hao ZHAO, Hui SHU, Fei KANG, Ying XING   

  1. State Key Laboratory of Mathematical Engineering and Advanced Computing, Zhengzhou 450001, China
  • Revised:2021-05-17 Online:2021-08-01 Published:2021-08-01
  • Supported by:
    The Key R&D Program of China(2019QY1305)

摘要:

区块链技术的发展与应用使构建更为鲁棒和灵活的僵尸网络命令控制信道成为可能。为了更好地研究这类潜在的新型僵尸网络威胁,提出基于区块链智能合约的高对抗性僵尸网络模型——SCBot。SCBot 模型采用分层混合拓扑结构,在僵尸子网层构建基于智能合约的命令传递信道,并建立可信度评估机制判别节点真实性,从流量和终端两大层面提升网络的对抗性。模拟构建小型的僵尸网络集群,对SCBot的命令传递效率和鲁棒性进行了对比实验,并从经济成本角度分析其在现实环境中的可行性。最后对该类型僵尸网络的防御策略做简要分析和讨论。

关键词: 网络安全, 僵尸网络, 命令控制, 区块链, 智能合约

Abstract:

The development and application of blockchain technology makes it possible to build a more robust and flexible botnet command and control channel.In order to better study this type of potential new botnet threats, a highly confrontational botnet model based on blockchain smart contracts-SCBot was proposed.The SCBot model adopts a hierarchical hybrid topology structure, builds a command transmission channel based on smart contracts at the zombie subnet layer, and establishes a credibility evaluation mechanism to determine the authenticity of nodes, and enhances the confrontation of the network from the two major levels of traffic and terminals.The construction of small botnet clusters were simulated, comparative experiments on SCBot's command transmission efficiency and robustness were conducted, and its feasibility in the real environment from the perspective of economic costs was analyzed.Finally, a brief analysis and discussion of the defense strategy of this type of botnet were given.

Key words: cyber security, botnet, command and control, blockchain, smart contract

中图分类号: 

No Suggested Reading articles found!