{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,28]],"date-time":"2025-09-28T20:51:33Z","timestamp":1759092693644},"publisher-location":"Berlin, Heidelberg","reference-count":23,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642392344"},{"type":"electronic","value":"9783642392351"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2013]]},"DOI":"10.1007\/978-3-642-39235-1_4","type":"book-chapter","created":{"date-parts":[[2013,7,13]],"date-time":"2013-07-13T04:07:36Z","timestamp":1373688456000},"page":"62-82","source":"Crossref","is-referenced-by-count":38,"title":["PeerRush: Mining for Unwanted P2P Traffic"],"prefix":"10.1007","author":[{"given":"Babak","family":"Rahbarinia","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Roberto","family":"Perdisci","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Andrea","family":"Lanzi","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kang","family":"Li","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"4_CR1","unstructured":"Buford, J., Yu, H., Lua, E.K.: P2P Networking and Applications. Morgan Kaufmann Publishers Inc. (2008)"},{"key":"4_CR2","doi-asserted-by":"crossref","unstructured":"Coskun, B., Dietrich, S., Memon, N.: Friends of an enemy: identifying local members of peer-to-peer botnets using mutual contacts. In: Proceedings of the 26th Annual Computer Security Applications Conference, ACSAC 2010 (2010)","DOI":"10.1145\/1920261.1920283"},{"issue":"2","key":"4_CR3","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1145\/2089125.2089126","volume":"44","author":"M. Egele","year":"2008","unstructured":"Egele, M., Scholte, T., Kirda, E., Kruegel, C.: A survey on automated dynamic malware-analysis techniques and tools. ACM Comput. Surv. 44(2), 6:1\u20136:42 (2008)","journal-title":"ACM Comput. Surv."},{"key":"4_CR4","doi-asserted-by":"crossref","unstructured":"Gomes, J.V., Inacio, P.R.M., Pereira, M., Freire, M.M., Monteiro, P.P.: Detection and classification of peer-to-peer traffic: A survey. ACM Computing Surveys (2012)","DOI":"10.1145\/2480741.2480747"},{"key":"4_CR5","unstructured":"Gu, G., Perdisci, R., Zhang, J., Lee, W.: Botminer: Clustering analysis of network traffic for protocol- and structure-independent botnet detection. In: Proceedings of the 17th Conference on Usenix Security Symposium, SS 2008 (2008)"},{"key":"4_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-642-15512-3_1","volume-title":"Recent Advances in Intrusion Detection","author":"I.U. Haq","year":"2010","unstructured":"Haq, I.U., Ali, S., Khan, H., Khayam, S.A.: What is the impact of P2P traffic on anomaly detection? In: Jha, S., Sommer, R., Kreibich, C. (eds.) RAID 2010. LNCS, vol.\u00a06307, pp. 1\u201317. Springer, Heidelberg (2010)"},{"key":"4_CR7","unstructured":"Hayes, B.: Skype: A practical security analysis, http:\/\/www.sans.org\/reading_room\/whitepapers\/voip\/skype-practical-security-analysis_32918"},{"key":"4_CR8","unstructured":"Holz, T., Steiner, M., Dahl, F., Biersack, E., Freiling, F.: Measurements and mitigation of peer-to-peer-based botnets: a case study on storm worm. In: 1st Usenix Workshop on Large-Scale Exploits and Emergent Threats, LEET 2008 (2008)"},{"issue":"6","key":"4_CR9","doi-asserted-by":"publisher","first-page":"849","DOI":"10.1016\/j.comnet.2008.11.005","volume":"53","author":"Y. Hu","year":"2009","unstructured":"Hu, Y., Chiu, D.M., Lui, J.C.S.: Profiling and identification of P2P traffic. Comput. Netw.\u00a053(6), 849\u2013863 (2009)","journal-title":"Comput. Netw."},{"key":"4_CR10","doi-asserted-by":"crossref","unstructured":"Karagiannis, T., Broido, A., Faloutsos, M., Claffy, K.: Transport layer identification of p2p traffic. In: Proceedings of the 4th ACM SIGCOMM Conference on Internet Measurement, IMC 2004 (2004)","DOI":"10.1145\/1028788.1028804"},{"issue":"4","key":"4_CR11","doi-asserted-by":"crossref","first-page":"229","DOI":"10.1145\/1090191.1080119","volume":"35","author":"Thomas Karagiannis","year":"2005","unstructured":"Karagiannis, T., Papagiannaki, K., Faloutsos, M.: Blinc: multilevel traffic classification in the dark. SIGCOMM Comput. Commun. Rev. 35(4) (August 2005)","journal-title":"ACM SIGCOMM Computer Communication Review"},{"key":"4_CR12","unstructured":"Lelli, A.: Zeusbot\/spyeye p2p updated, fortifying the botnet, http:\/\/www.symantec.com\/connect\/blogs\/zeusbotspyeye-p2p-updated-fortifying-botnet"},{"key":"4_CR13","doi-asserted-by":"crossref","unstructured":"Madhukar, A., Williamson, C.: A longitudinal study of p2p traffic classification. In: Proceedings of the 14th IEEE International Symposium on Modeling, Analysis, and Simulation, MASCOTS 2006 (2006)","DOI":"10.1109\/MASCOTS.2006.6"},{"key":"4_CR14","doi-asserted-by":"crossref","unstructured":"Mohajeri Moghaddam, H., Derakhshani, M., Li, B., Goldberg, I.: SkypeMorph: Protocol obfuscation for tor bridges. Tech. Report CACR 2012-08","DOI":"10.1145\/2382196.2382210"},{"key":"4_CR15","unstructured":"Nagaraja, S., Mittal, P., Hong, C.Y., Caesar, M., Borisov, N.: Botgrep: finding p2p bots with structured graph analysis. In: Proceedings of the 19th USENIX Conference on Security, USENIX Security 2010 (2010)"},{"key":"4_CR16","unstructured":"Nunnery, C., Sinclair, G., Kang, B.B.: Tumbling down the rabbit hole: exploring the idiosyncrasies of botmaster systems in a multi-tier botnet infrastructure. In: Proceedings of the 3rd USENIX Conference on Large-scale Exploits and Emergent Threats: Botnets, Spyware, Worms, and More, LEET 2010 (2010)"},{"key":"4_CR17","doi-asserted-by":"crossref","unstructured":"Sen, S., Spatscheck, O., Wang, D.: Accurate, scalable in-network identification of p2p traffic using application signatures. In: Proceedings of the 13th International Conference on World Wide Web, WWW 2004 (2004)","DOI":"10.1145\/988672.988742"},{"key":"4_CR18","doi-asserted-by":"crossref","unstructured":"Stutzbach, D., Rejaie, R.: Understanding churn in peer-to-peer networks. In: Proceedings of the 6th ACM SIGCOMM Conference on Internet Measurement, IMC 2006 (2006)","DOI":"10.1145\/1177080.1177105"},{"key":"4_CR19","unstructured":"Tax, D.M.J.: DDtools, the data description toolbox for Matlab. v1.9.1, http:\/\/prlab.tudelft.nl\/david-tax\/dd_tools.html"},{"key":"4_CR20","unstructured":"Tax, D.M.J.: One-class classification. Ph.D. Thesis, TU Delft (2001)"},{"key":"4_CR21","doi-asserted-by":"crossref","unstructured":"Wu, H.S., Huang, N.F., Lin, G.H.: Identifying the use of data\/voice\/video-based p2p traffic by dns-query behavior. In: Proceedings of the 2009 IEEE International Conference on Communications, ICC 2009 (2009)","DOI":"10.1109\/ICC.2009.5199062"},{"key":"4_CR22","doi-asserted-by":"crossref","unstructured":"Yen, T.F., Reiter, M.K.: Are your hosts trading or plotting? telling p2p file-sharing and bots apart. In: Proceedings of the 2010 IEEE 30th International Conference on Distributed Computing Systems, ICDCS 2010 (2010)","DOI":"10.1109\/ICDCS.2010.76"},{"key":"4_CR23","doi-asserted-by":"crossref","unstructured":"Zhang, J., Perdisci, R., Lee, W., Sarfraz, U., Luo, X.: Detecting stealthy P2P botnets using statistical traffic fingerprints. In: Proceedings of the 2011 IEEE\/IFIP 41st International Conference on Dependable Systems&Networks, DSN 2011 (2011)","DOI":"10.1109\/DSN.2011.5958212"}],"container-title":["Lecture Notes in Computer Science","Detection of Intrusions and Malware, and Vulnerability Assessment"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-39235-1_4","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,7,18]],"date-time":"2019-07-18T04:03:57Z","timestamp":1563422637000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-39235-1_4"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2013]]},"ISBN":["9783642392344","9783642392351"],"references-count":23,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-39235-1_4","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2013]]}}}