Definition

botnet topology

A botnet topology is the network structure by which botnet interconnections are organized.

Botnet topologies may be either centralized around a command and control server (C&C server) or decentralized using peer-to-peer (P2P) communication.

Typical botnet topologies include:

Star, in which the bots are organised around a central C&C server.
Multi-server, in which there are multiple C&C servers for redundancy in case one is disabled.
Hierarchical, in which multiple C&C servers are organized into tiered groups to increase reliability. The hierarchical structure also makes it possible to parcel out groups of bots for rental to different clients, and reduces the number of machines that could be discoverable from the detection of a single group or bot.
Random, in which there is no C&C server at all and bots communicate peer-to-peer (P2P botnet), with more advanced botnets using encryption.

As a resiliency measure, some non-random botnets are designed to reorganize as a P2P botnet in the event that a C&C server is taken down.

This was last updated in May 2014

Compliance risk is an organization's potential exposure to legal penalties, financial forfeiture and material loss, resulting ...

Information governance is a holistic approach to managing corporate information by implementing processes, roles, controls and ...

Enterprise document management (EDM) is a strategy for overseeing an organization's paper and electronic documents so they can be...

Unified threat management (UTM) describes an information security (infosec) system that provides a single point of protection ...

Physical security is the protection of personnel, hardware, software, networks and data from physical actions and events that ...

An attack vector is a path or means by which an attacker or hacker can gain access to a computer or network server in order to ...

Protected health information (PHI), also referred to as personal health information, is the demographic information, medical ...

Digital health, or digital healthcare, is a broad, multidisciplinary concept that includes concepts from an intersection between ...

HIPAA (Health Insurance Portability and Accountability Act) is United States legislation that provides data privacy and security ...

Risk mitigation is a strategy to prepare for and lessen the effects of threats faced by a business.

A call tree is a layered hierarchical communication model that is used to notify specific individuals of an event and coordinate ...

Disaster recovery as a service (DRaaS) is the replication and hosting of physical or virtual servers by a third party to provide ...

Cloud storage is a service model in which data is transmitted and stored on remote storage systems, where it is maintained, ...

Cloud testing is the process of using the cloud computing resources of a third-party service provider to test software ...

Storage virtualization is the pooling of physical storage from multiple storage devices into what appears to be a single storage ...