Paper Abstract and Keywords |
Presentation |
2015-03-03 16:15
Link Structural Analysis of Drive-by-Download Attacks Yuji Dairiki (Kobe Univ.), Masaki Kamizono (SecureBrain), Masami Mohri (Gifu Univ.), Yoshiaki Shiraishi, Masakatu Morii (Kobe Univ.) ICSS2014-70 |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
In analyzing Drive-by-Download (DBD) attack, it is basic and essential to analysis the link structure through tracking the redirect of the related website in multistage from the entrance site to the infected site with malware. However, construct the Web link structure included in packet captured data is not easy, because the DBD attack has various redirect means. Currently some techniques of tracking redirect are already proposed such as the analysis of HTTP header and HTTP payload described in JavaScript etc. But, all of these techniques are just applied to extract part of the whole link structure included in the communication data. In this paper, depending on combining HTTP header analysis and HTTP content analysis, a system is proposed, which could output the whole link structure. By the simulation using attacked communication data, the proposed system is confirmed to be able to output the link structure including nodes and edges that other techniques could not achieve. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
Drive-by-Download attack / Web link structure analysis / URL redirect / HTTP header analysis / HTTP contents analysis / / / |
Reference Info. |
IEICE Tech. Rep., vol. 114, no. 489, ICSS2014-70, pp. 43-48, March 2015. |
Paper # |
ICSS2014-70 |
Date of Issue |
2015-02-24 (ICSS) |
ISSN |
Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 |
Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) |
Download PDF |
ICSS2014-70 |
Conference Information |
Committee |
ICSS |
Conference Date |
2015-03-03 - 2015-03-04 |
Place (in Japanese) |
(See Japanese page) |
Place (in English) |
Meio Univiersity |
Topics (in Japanese) |
(See Japanese page) |
Topics (in English) |
Communication Security, etc. |
Paper Information |
Registration To |
ICSS |
Conference Code |
2015-03-ICSS |
Language |
Japanese |
Title (in Japanese) |
(See Japanese page) |
Sub Title (in Japanese) |
(See Japanese page) |
Title (in English) |
Link Structural Analysis of Drive-by-Download Attacks |
Sub Title (in English) |
|
Keyword(1) |
Drive-by-Download attack |
Keyword(2) |
Web link structure analysis |
Keyword(3) |
URL redirect |
Keyword(4) |
HTTP header analysis |
Keyword(5) |
HTTP contents analysis |
Keyword(6) |
|
Keyword(7) |
|
Keyword(8) |
|
1st Author's Name |
Yuji Dairiki |
1st Author's Affiliation |
Kobe University (Kobe Univ.) |
2nd Author's Name |
Masaki Kamizono |
2nd Author's Affiliation |
SecureBrain (SecureBrain) |
3rd Author's Name |
Masami Mohri |
3rd Author's Affiliation |
Gifu University (Gifu Univ.) |
4th Author's Name |
Yoshiaki Shiraishi |
4th Author's Affiliation |
Kobe University (Kobe Univ.) |
5th Author's Name |
Masakatu Morii |
5th Author's Affiliation |
Kobe University (Kobe Univ.) |
6th Author's Name |
|
6th Author's Affiliation |
() |
7th Author's Name |
|
7th Author's Affiliation |
() |
8th Author's Name |
|
8th Author's Affiliation |
() |
9th Author's Name |
|
9th Author's Affiliation |
() |
10th Author's Name |
|
10th Author's Affiliation |
() |
11th Author's Name |
|
11th Author's Affiliation |
() |
12th Author's Name |
|
12th Author's Affiliation |
() |
13th Author's Name |
|
13th Author's Affiliation |
() |
14th Author's Name |
|
14th Author's Affiliation |
() |
15th Author's Name |
|
15th Author's Affiliation |
() |
16th Author's Name |
|
16th Author's Affiliation |
() |
17th Author's Name |
|
17th Author's Affiliation |
() |
18th Author's Name |
|
18th Author's Affiliation |
() |
19th Author's Name |
|
19th Author's Affiliation |
() |
20th Author's Name |
|
20th Author's Affiliation |
() |
Speaker |
Author-1 |
Date Time |
2015-03-03 16:15:00 |
Presentation Time |
25 minutes |
Registration for |
ICSS |
Paper # |
ICSS2014-70 |
Volume (vol) |
vol.114 |
Number (no) |
no.489 |
Page |
pp.43-48 |
#Pages |
6 |
Date of Issue |
2015-02-24 (ICSS) |
|