Deep Graph Embedding for IoT Botnet Traffic Detection

Zhang, Bonan, Li, Jingjin, Ward, Lindsay, Zhang, Ying, Chen, Chao, Zhang, Jun, and Wang, Ding (2023) Deep Graph Embedding for IoT Botnet Traffic Detection. Security and Communication Networks, 2023. 9796912.

PDF (Published Version) - Published Version
Available under License Creative Commons Attribution.

Download (481kB) | Preview
View at Publisher Website:


Botnet attacks have mainly targeted computers in the past, which is a fundamental cybersecurity problem. Due to the booming of Internet of things (IoT) devices, an increasing number of botnet attacks are now targeting IoT devices. Researchers have proposed several mechanisms to avoid botnet attacks, such as identification by communication patterns or network topology and defence by DNS blacklisting. A popular direction for botnet detection currently relies on the specific topological characteristics of botnets and uses machine learning models. However, it relies on network experts’ domain knowledge for feature engineering. Recently, neural networks have shown the capability of representation learning. This paper proposes a new approach to extracting graph features via graph neural networks. To capture the particular topology of the botnet, we transform the network traffic into graphs and train a graph neural network to extract features. In our evaluations, we use graph embedding features to train six machine learning models and compare them with the performance of traditional graph features in identifying botnet nodes. The experimental results show that botnet traffic detection is still challenging even with neural networks. We should consider the impact of data, features, and algorithms for an accurate and robust solution.

Item ID: 80800
Item Type: Article (Research - C1)
ISSN: 1939-0114
Copyright Information: Hindawi publishes Contributions under a Creative Commons Attribution 4.0 License (
Date Deposited: 31 Oct 2023 00:21
FoR Codes: 46 INFORMATION AND COMPUTING SCIENCES > 4604 Cybersecurity and privacy > 460407 System and network security @ 100%
SEO Codes: 22 INFORMATION AND COMMUNICATION SERVICES > 2201 Communication technologies, systems and services > 220104 Network security @ 100%
Downloads: Total: 14
Last 12 Months: 7
More Statistics

Actions (Repository Staff Only)

Item Control Page Item Control Page