| Presentation | 2021-03-01 Implementation of Assessment System for Residual Risks of Information Leakage in Incident Countermeasures Tomohiro Noda, Hirokazu Hasegawa, Hajime Shimada, Yukiko Yamaguchi, Hiroki Takakura, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | Recent sophisticated targeted attacks make it difficult for us to protect our corporate resources perfectly. Therefore, we need to focus on not only protecting against a intrusion but also mitigating a damage of post intrusion. We already proposed an initial study of Assessment System for Residual Risks of Information Leakage in Incident Countermeasures. In this paper, we propose an implementation of a malware infection risk estimation function for the assessment system and perform experimental evaluation. The malware infection risk estimation function calculates an infection risk of a host from access control information in a network and the host behavior. After that, the system evaluates a residual risks remaining after applying a countermeasure. The system allows us to choose countermeasures for incidents in terms of residual risks that cannot be covered by the previous system. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Targeted Cyber Attacks / Information Leakage / Residual Risks / Directory Service |
| Paper # | ICSS2020-32 |
| Date of Issue | 2021-02-22 (ICSS) |
| Conference Information | |
| Committee | ICSS / IPSJ-SPT |
|---|---|
| Conference Date | 2021/3/1(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Online |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | Security, Trust, etc. |
| Chair | Hiroki Takakura(NII) |
| Vice Chair | Katsunari Yoshioka(Yokohama National Univ.) / Kazunori Kamiya(NTT) |
| Secretary | Katsunari Yoshioka(NICT) / Kazunori Kamiya(KDDI labs.) |
| Assistant | Keisuke Kito(Mitsubishi Electric) / Toshihiro Yamauchi(Okayama Univ.) |
| Paper Information | |
| Registration To | Technical Committee on Information and Communication System Security / Special Interest Group on Security Psychology and Trust |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Implementation of Assessment System for Residual Risks of Information Leakage in Incident Countermeasures |
| Sub Title (in English) | |
| Keyword(1) | Targeted Cyber Attacks |
| Keyword(2) | Information Leakage |
| Keyword(3) | Residual Risks |
| Keyword(4) | Directory Service |
| 1st Author's Name | Tomohiro Noda |
| 1st Author's Affiliation | Nagoya University(Nagoya Univ.) |
| 2nd Author's Name | Hirokazu Hasegawa |
| 2nd Author's Affiliation | Nagoya University(Nagoya Univ.) |
| 3rd Author's Name | Hajime Shimada |
| 3rd Author's Affiliation | Nagoya University(Nagoya Univ.) |
| 4th Author's Name | Yukiko Yamaguchi |
| 4th Author's Affiliation | Nagoya University(Nagoya Univ.) |
| 5th Author's Name | Hiroki Takakura |
| 5th Author's Affiliation | National Institute of Informatics(NII) |
| Date | 2021-03-01 |
| Paper # | ICSS2020-32 |
| Volume (vol) | vol.120 |
| Number (no) | ICSS-384 |
| Page | pp.pp.37-42(ICSS), |
| #Pages | 6 |
| Date of Issue | 2021-02-22 (ICSS) |