Botnet detection on twitter: a novel similarity-based clustering mechanism

Simple item page
dc.audience.educationlevelMedios de comunicación/News Media
dc.audience.educationlevelEmpresas/Companies
dc.audience.educationlevelPadres y Familias/Parents and Families
dc.audience.educationlevelPúblico en general/General public
dc.contributor.advisorMonroy Borja, Raúl
dc.contributor.authorSamper Escalante, Luis Daniel
dc.contributor.catalogeremipsanchez
dc.contributor.committeememberCastro Espinoza, Félix Agustín
dc.contributor.committeememberGonzález Mendoza, Miguel
dc.contributor.departmentSchool of Engineering and Sciences
dc.contributor.institutionRectoría Tec de Monterrey
dc.contributor.mentorLoyola González, Octavio
dc.date.accepted2024-11-24
dc.date.accessioned2025-01-09T01:41:03Z
dc.date.issued2024-12
dc.descriptionhttps://orcid.org/0000-0002-3465-995X
dc.description.abstractBotnet detection on Twitter represents a critical yet under-explored research problem,as botnets programmed with malicious intent threaten the platform’s security and credibility. Although Twitter has implemented mitigation strategies, such as imposing restrictions andbans, these measures remain insufficient due to botnets’ rapid creation and expansion. Existing solutions proposed by researchers for manual and automated botnet detection typically rely on individual metrics commonly used for detecting bots. However, these approaches lack the necessary group-oriented analysis and metrics critical for effectively identifying botnets of varying sizes and objectives. To address this issue, we have developed an innovative botnet detection mechanism based on similarity, which significantly enhances the detection rate of botnets on Twitter. Each bot, regardless of its complexity, leaves detectable traces of automation in its creation, behavior, or interactions with other accounts. By characterizing these traces, we can establish relationships between bots, enabling effective botnet detection. Our mechanism constructs a regression model to quantify the similarity between bots, leveraging features from user data, tweet patterns, and social interactions on the platform. Then, it uses this similarity measure to build a distance matrix, enabling the formation of groups with shared attributes, connections, and objectives through clustering methods. Our botnet detection mechanism achieved extraordinary success, evidenced by high scores on external Clustering Validation Indices (CVIs) and the Area under the ROC Curve (AUC) compared to existing solutions from the literature. Furthermore, the mechanism proved effective when confronted with unknown botnets with varied objectives. Our experimental findings suggest that this work is well-positioned to strengthen future botnet detection mechanisms, having shown the value of incorporating social interaction features. This integration offers a strategic advantage in the ongoing arms race against botmasters and their malicious objectives. Additionally, our mechanism consistently outperforms other approaches across various metrics, configurations, and algorithms, underscoring its effectiveness and adaptability in different detection scenarios.
dc.description.degreeDoctor of Philosophy in Computer Science
dc.format.mediumTexto
dc.identificator330409
dc.identifier.citationSamper Escalante, L. D. (2024). Botnet detection on twitter: a novel similarity-based clustering mechanism [Tesis maestría]. Instituto Tecnológico y de Estudios Superiores de Monterrey. Recuperado de: https://hdl.handle.net/11285/702997
dc.identifier.cvu540975
dc.identifier.orcidhttps://orcid.org/0000-0003-3696-3653
dc.identifier.urihttps://hdl.handle.net/11285/702997
dc.language.isoeng
dc.publisherInstituto Tecnológico y de Estudios Superiores de Monterrey
dc.relationInstituto Tecnológico y de Estudios Superiores de Monterrey
dc.relationCONAHCYT
dc.relation.isFormatOfacceptedVersion
dc.rightsopenAccess
dc.rights.urihttp://creativecommons.org/licenses/by-nc-nd/4.0
dc.subject.classificationINGENIERÍA Y TECNOLOGÍA::CIENCIAS TECNOLÓGICAS::TECNOLOGÍA DE LOS ORDENADORES::MANTENIMIENTO DE LOS ORDENADORES
dc.subject.keywordBotnet Detection
dc.subject.keywordTwitter
dc.subject.keywordSimilarity
dc.subject.keywordRegression
dc.subject.keywordClustering
dc.subject.lcshTechnology
dc.titleBotnet detection on twitter: a novel similarity-based clustering mechanism
dc.typeTesis de doctorado

Files

Original bundle

Now showing 1 - 3 of 3
Thumbnail Image
Name:
SamperEscalante_TesisDoctoradopdfa.pdf
Size:
3.28 MB
Format:
Adobe Portable Document Format
Description:
Tesis Doctorado
Download
Thumbnail Image
Name:
SamperEscalante_ActaGradoDeclaracionAutoriapdfa.pdf
Size:
549.65 KB
Format:
Adobe Portable Document Format
Description:
Acta de Grado
Download
Thumbnail Image
Name:
SamperEscalante_CartaAutorizacionpdf.pdf
Size:
124.39 KB
Format:
Adobe Portable Document Format
Description:
Carta Autorización
Download

License bundle

Now showing 1 - 1 of 1
Thumbnail Image
Name:
license.txt
Size:
1.28 KB
Format:
Item-specific license agreed upon to submission
Description:
Download

Collections

Ciencias Exactas y Ciencias de la Salud
logo

El usuario tiene la obligación de utilizar los servicios y contenidos proporcionados por la Universidad, en particular, los impresos y recursos electrónicos, de conformidad con la legislación vigente y los principios de buena fe y en general usos aceptados, sin contravenir con su realización el orden público, especialmente, en el caso en que, para el adecuado desempeño de su actividad, necesita reproducir, distribuir, comunicar y/o poner a disposición, fragmentos de obras impresas o susceptibles de estar en formato analógico o digital, ya sea en soporte papel o electrónico. Ley 23/2006, de 7 de julio, por la que se modifica el texto revisado de la Ley de Propiedad Intelectual, aprobado

DSpace software copyright © 2002-2025

Licencia