| Presentation | 2020-11-26 Initial Study of Assessment System for Residual Risks of Information Leakage in Incident Countermeasures Tomohiro Noda, Hirokazu Hasegawa, Hiroki Takakura, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | Recently, cyber attacks become more sophisticated and cause serious damage. Especially in targeted attacks, it is difficult to prevent intrusion of attacks, and the recent countermeasures focus on mitigation of damages by early detection and quick response against attacks. Previously, we proposed an incident response support system that recommends countermeasures of targeted attacks to network administrators. However, the system focuses on isolating the infected host and it's near hosts, and the infection possibility of other hosts is not considered. Therefore, we propose an Assessment System for Residual Risks of Information Leakage in Incident Countermeasures, and this paper discusses the initial study of the proposed system. The proposed system evaluates the residual risk of information leakage based on the risk of malware infection of all hosts in the network by a series of attacks and the importance of resources accessible from each host. We can select and take countermeasures in terms of residual risks by the proposed system. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Targeted Cyber Attacks / Information Leakage / Residual Risks / Directory Service |
| Paper # | ICSS2020-23 |
| Date of Issue | 2020-11-19 (ICSS) |
| Conference Information | |
| Committee | ICSS |
|---|---|
| Conference Date | 2020/11/26(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Online |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | Security, etc. |
| Chair | Hiroki Takakura(NII) |
| Vice Chair | Katsunari Yoshioka(Yokohama National Univ.) / Kazunori Kamiya(NTT) |
| Secretary | Katsunari Yoshioka(NICT) / Kazunori Kamiya(KDDI labs.) |
| Assistant | Keisuke Kito(Mitsubishi Electric) / Toshihiro Yamauchi(Okayama Univ.) |
| Paper Information | |
| Registration To | Technical Committee on Information and Communication System Security |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Initial Study of Assessment System for Residual Risks of Information Leakage in Incident Countermeasures |
| Sub Title (in English) | |
| Keyword(1) | Targeted Cyber Attacks |
| Keyword(2) | Information Leakage |
| Keyword(3) | Residual Risks |
| Keyword(4) | Directory Service |
| 1st Author's Name | Tomohiro Noda |
| 1st Author's Affiliation | Nagoya University(Nagoya Univ.) |
| 2nd Author's Name | Hirokazu Hasegawa |
| 2nd Author's Affiliation | Nagoya University(Nagoya Univ.) |
| 3rd Author's Name | Hiroki Takakura |
| 3rd Author's Affiliation | National Institute of informatics(NII) |
| Date | 2020-11-26 |
| Paper # | ICSS2020-23 |
| Volume (vol) | vol.120 |
| Number (no) | ICSS-264 |
| Page | pp.pp.21-25(ICSS), |
| #Pages | 5 |
| Date of Issue | 2020-11-19 (ICSS) |