Paper Abstract and Keywords |
Presentation |
2009-03-10 17:30
Detecting anomalies by monitoring terminals in Home Network Kengo Kuniyoshi, Masakatu Morii (Kobe Univ.) IT2008-94 ISEC2008-152 WBS2008-107 |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
The system like IDS and IPS based on the handcrafted signatures which represent the illegal characteristics is effective on a known malware and an unauthorized access, but cannot detect the unknown ones and suffer the damage. Recently as Home Network has been developed, there is a possibility that inflicts the further damage on the network due to the delay of detection. In this paper, we propose a system which can detect the unknown ones early without exception by using a database consisted of the aggregate of the running processes and the packet information on the target PCs. Our method can detect the unknown ones and decrease the false positives as time goes on. Moreover, our method is effective against the anomaly by a Root-kit. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
Anomaly-based / Monitoring terminal / Home Network / Malware / / / / |
Reference Info. |
IEICE Tech. Rep., vol. 108, no. 473, ISEC2008-152, pp. 329-334, March 2009. |
Paper # |
ISEC2008-152 |
Date of Issue |
2009-03-02 (IT, ISEC, WBS) |
ISSN |
Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 |
Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) |
Download PDF |
IT2008-94 ISEC2008-152 WBS2008-107 |
Conference Information |
Committee |
WBS IT ISEC |
Conference Date |
2009-03-09 - 2009-03-10 |
Place (in Japanese) |
(See Japanese page) |
Place (in English) |
Hakodate Mirai Univ. |
Topics (in Japanese) |
(See Japanese page) |
Topics (in English) |
|
Paper Information |
Registration To |
ISEC |
Conference Code |
2009-03-WBS-IT-ISEC |
Language |
Japanese |
Title (in Japanese) |
(See Japanese page) |
Sub Title (in Japanese) |
(See Japanese page) |
Title (in English) |
Detecting anomalies by monitoring terminals in Home Network |
Sub Title (in English) |
|
Keyword(1) |
Anomaly-based |
Keyword(2) |
Monitoring terminal |
Keyword(3) |
Home Network |
Keyword(4) |
Malware |
Keyword(5) |
|
Keyword(6) |
|
Keyword(7) |
|
Keyword(8) |
|
1st Author's Name |
Kengo Kuniyoshi |
1st Author's Affiliation |
Kobe University (Kobe Univ.) |
2nd Author's Name |
Masakatu Morii |
2nd Author's Affiliation |
Kobe University (Kobe Univ.) |
3rd Author's Name |
|
3rd Author's Affiliation |
() |
4th Author's Name |
|
4th Author's Affiliation |
() |
5th Author's Name |
|
5th Author's Affiliation |
() |
6th Author's Name |
|
6th Author's Affiliation |
() |
7th Author's Name |
|
7th Author's Affiliation |
() |
8th Author's Name |
|
8th Author's Affiliation |
() |
9th Author's Name |
|
9th Author's Affiliation |
() |
10th Author's Name |
|
10th Author's Affiliation |
() |
11th Author's Name |
|
11th Author's Affiliation |
() |
12th Author's Name |
|
12th Author's Affiliation |
() |
13th Author's Name |
|
13th Author's Affiliation |
() |
14th Author's Name |
|
14th Author's Affiliation |
() |
15th Author's Name |
|
15th Author's Affiliation |
() |
16th Author's Name |
|
16th Author's Affiliation |
() |
17th Author's Name |
|
17th Author's Affiliation |
() |
18th Author's Name |
|
18th Author's Affiliation |
() |
19th Author's Name |
|
19th Author's Affiliation |
() |
20th Author's Name |
|
20th Author's Affiliation |
() |
Speaker |
Author-1 |
Date Time |
2009-03-10 17:30:00 |
Presentation Time |
25 minutes |
Registration for |
ISEC |
Paper # |
IT2008-94, ISEC2008-152, WBS2008-107 |
Volume (vol) |
vol.108 |
Number (no) |
no.472(IT), no.473(ISEC), no.474(WBS) |
Page |
pp.329-334 |
#Pages |
6 |
Date of Issue |
2009-03-02 (IT, ISEC, WBS) |
|