What is botnet topology? - Definition from WhatIs.com
Part of the Network security glossary:

A botnet topology is the network structure by which botnet interconnections are organized.

Botnet topologies may be either centralized around a command and control server (C&C server) or decentralized using peer-to-peer (P2P) communication.

Typical botnet topologies include:

  • Star, in which the bots are organised around a central C&C server.
  • Multi-server, in which there are multiple C&C servers for redundancy in case one is disabled.
  • Hierarchical, in which multiple C&C servers are organized into tiered groups to increase reliability. The hierarchical structure also makes it possible to parcel out groups of bots for rental to different clients, and reduces the number of machines that could be discoverable from the detection of a single group or bot.
  • Random, in which there is no C&C server at all and bots communicate peer-to-peer (P2P botnet), with more advanced botnets using encryption.

As a resiliency measure, some non-random botnets are designed to reorganize as a P2P botnet in the event that a C&C server is taken down.

This was last updated in May 2014
Contributor(s): Matthew Haughn
Posted by: Margaret Rouse

Related Terms

Definitions

  • due diligence

    - Due diligence definition: Due diligence is the process of systematically researching and verifying the accuracy of a particular statement. In the business world, due diligence is required to valida... (WhatIs.com)

  • Misfortune Cookie

    - Misfortune Cookie is a firmware vulnerability in some routers that makes it possible for an attacker to gain administrative privileges and attack the devices and, through them, the network.   (WhatIs.com)

  • embedded system security

    - While trends like BYOD, the IoT and automation speed ahead, the security of embedded systems often lags. As attacks on embedded systems and firmware become more common, however, it becomes increasi... (WhatIs.com)

Glossaries

  • Network security

    - Terms related to network security, including definitions about intrusion prevention and words and phrases about VPNs and firewalls.

  • Internet applications

    - This WhatIs.com glossary contains terms related to Internet applications, including definitions about Software as a Service (SaaS) delivery models and words and phrases about web sites, e-commerce ...

Ask a Question About botnet topologyPowered by ITKnowledgeExchange.com

Get answers from your peers on your most technical challenges

Tech TalkComment

Share
Comments

    Results

    Contribute to the conversation

    All fields are required. Comments will appear at the bottom of the article.