Browse Definitions :
Definition

botnet topology

A botnet topology is the network structure by which botnet interconnections are organized.

Botnet topologies may be either centralized around a command and control server (C&C server) or decentralized using peer-to-peer (P2P) communication.

Typical botnet topologies include:

  • Star, in which the bots are organised around a central C&C server.
  • Multi-server, in which there are multiple C&C servers for redundancy in case one is disabled.
  • Hierarchical, in which multiple C&C servers are organized into tiered groups to increase reliability. The hierarchical structure also makes it possible to parcel out groups of bots for rental to different clients, and reduces the number of machines that could be discoverable from the detection of a single group or bot.
  • Random, in which there is no C&C server at all and bots communicate peer-to-peer (P2P botnet), with more advanced botnets using encryption.

As a resiliency measure, some non-random botnets are designed to reorganize as a P2P botnet in the event that a C&C server is taken down.

This was last updated in May 2014

Continue Reading About botnet topology

SearchCompliance

  • compliance risk

    Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

  • information governance

    Information governance is a holistic approach to managing corporate information by implementing processes, roles, controls and ...

  • enterprise document management (EDM)

    Enterprise document management (EDM) is a strategy for overseeing an organization's paper and electronic documents so they can be...

SearchSecurity

  • unified threat management (UTM)

    Unified threat management (UTM) describes an information security (infosec) system that provides a single point of protection ...

  • physical security

    Physical security is the protection of personnel, hardware, software, networks and data from physical actions and events that ...

  • attack vector

    An attack vector is a path or means by which an attacker or hacker can gain access to a computer or network server in order to ...

SearchHealthIT

SearchDisasterRecovery

  • risk mitigation

    Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

  • call tree

    A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

  • Disaster Recovery as a Service (DRaaS)

    Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

SearchStorage

  • cloud storage

    Cloud storage is a service model in which data is transmitted and stored on remote storage systems, where it is maintained, ...

  • cloud testing

    Cloud testing is the process of using the cloud computing resources of a third-party service provider to test software ...

  • storage virtualization

    Storage virtualization is the pooling of physical storage from multiple storage devices into what appears to be a single storage ...

Close