| IEICE Technical Committee Submission System Conference Paper's Information |
Online Proceedings [Sign in] Tech. Rep. Archives |
| Go Top Page | Go Previous | [Japanese] / [English] |
| Paper Abstract and Keywords | ||
| Presentation | 2014-03-28 11:15 Timeline-Based Event Log Viewer over Multi-Host Environment Takashi Tomine, Yu Tsuda, Masaki Kamizono (NICT), Kazunori Sugiura (Keio Univ.), Daisuke Inoue, Koji Nakao (NICT)  ICSS2013-79 |
|
| Abstract | (in Japanese) | (See Japanese page) |
| (in English) | A cyber attacking becomes clever and complicated. Recently the number of Advanced Persistent Threat (APT) attacks to get confidential information from the targeted companies is increasing. In many cases, APT malware are acting thief information over some hosts. In addition, these are long-term attacks for several months. It is very hard and needs much time to analyze these kinds of attacks, because there are so much event logs from many distributed hosts in targeted companies over a long period of time. In this paper, we proposed a graphical interface based on a date-time with gathered various information and event logs from various hosts. By this interface, we can analyze huge event logs efficiently, since we can recognize a connection among some events happened in closed time visually. Therefore, we obtain finding overlooked cyber-security incidents and grasping harmful in own environment effectively. |
|
| Keyword | (in Japanese) | (See Japanese page) |
| (in English) | Cyber Attack / Advanced Persistent Threat / Log Collection / Log Analysis / Visualization / / / | |
| Reference Info. | IEICE Tech. Rep., vol. 113, no. 502, ICSS2013-79, pp. 125-130, March 2014. | |
| Paper # | ICSS2013-79 | |
| Date of Issue | 2014-03-20 (ICSS) | |
| ISSN | Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 | |
| Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) | |
| Download PDF | ICSS2013-79 |
|
| Conference Information | |
| Committee | ICSS IPSJ-SPT |
| Conference Date | 2014-03-27 - 2014-03-28 |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Meio Univiersity |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | Communication Security, Security Psychology & Trust, etc. |
| Paper Information | |
| Registration To | ICSS |
| Conference Code | 2014-03-ICSS-SPT |
| Language | Japanese |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Timeline-Based Event Log Viewer over Multi-Host Environment |
| Sub Title (in English) | |
| Keyword(1) | Cyber Attack |
| Keyword(2) | Advanced Persistent Threat |
| Keyword(3) | Log Collection |
| Keyword(4) | Log Analysis |
| Keyword(5) | Visualization |
| Keyword(6) | |
| Keyword(7) | |
| Keyword(8) | |
| 1st Author's Name | Takashi Tomine |
| 1st Author's Affiliation | National Institute of Information and Communications Technology (NICT) |
| 2nd Author's Name | Yu Tsuda |
| 2nd Author's Affiliation | National Institute of Information and Communications Technology (NICT) |
| 3rd Author's Name | Masaki Kamizono |
| 3rd Author's Affiliation | National Institute of Information and Communications Technology (NICT) |
| 4th Author's Name | Kazunori Sugiura |
| 4th Author's Affiliation | Keio University (Keio Univ.) |
| 5th Author's Name | Daisuke Inoue |
| 5th Author's Affiliation | National Institute of Information and Communications Technology (NICT) |
| 6th Author's Name | Koji Nakao |
| 6th Author's Affiliation | National Institute of Information and Communications Technology (NICT) |
| 7th Author's Name | |
| 7th Author's Affiliation | () |
| 8th Author's Name | |
| 8th Author's Affiliation | () |
| 9th Author's Name | |
| 9th Author's Affiliation | () |
| 10th Author's Name | |
| 10th Author's Affiliation | () |
| 11th Author's Name | |
| 11th Author's Affiliation | () |
| 12th Author's Name | |
| 12th Author's Affiliation | () |
| 13th Author's Name | |
| 13th Author's Affiliation | () |
| 14th Author's Name | |
| 14th Author's Affiliation | () |
| 15th Author's Name | |
| 15th Author's Affiliation | () |
| 16th Author's Name | |
| 16th Author's Affiliation | () |
| 17th Author's Name | |
| 17th Author's Affiliation | () |
| 18th Author's Name | |
| 18th Author's Affiliation | () |
| Speaker | Author-1 |
| Date Time | 2014-03-28 11:15:00 |
| Presentation Time | 25 minutes |
| Registration for | ICSS |
| Paper # | ICSS2013-79 |
| Volume (vol) | vol.113 |
| Number (no) | no.502 |
| Page | pp.125-130 |
| #Pages | 6 |
| Date of Issue | 2014-03-20 (ICSS) |
[Return to Top Page]