| Presentation | 2017-03-03 Struggling against New-Born Malwares Attached to Mails Motoyuki Ohmori, Naoki Miyata, Kiyoyuki Nakashima, Kenichi Takahashi, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | We, Tottori University, have been experiencing targeted attacks using malicious mails especially since fiscal year 2016. Those malicious mails contain {it malwares} such as viruses themselves or down-loaders. While some of those malwares are well-known to anti-virus softwares, others are not even to the state-of-the-art next-generation Intrusion Detection System (IDS) and/or Intrusion Prevention System (IPS). There is no reasonable way especially for small organizations like us, who cannot employ the state-of-the-art anti-virus equipment, to detect and prevent such new-born malwares. Those malwares then reach at end users, and end users may excute them and get infected. We then did not know what to do, and we thought that what all we could do was just to wait for our members to get infected. We, however, have found that there are not so many mails attached files. We have then decided to detect all attached files in mails, and been trying to quarantine malwares based upon empirical approaches. This paper present our findings, experiences and efforts. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | security / targeted attacks / mail attachment / malware / anomaly detection |
| Paper # | SITE2016-70,IA2016-100 |
| Date of Issue | 2017-02-24 (SITE, IA) |
| Conference Information | |
| Committee | IA / SITE / IPSJ-IOT |
|---|---|
| Conference Date | 2017/3/3(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | Culture Resort Festone (Okinawa) |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | Internet and Information Ethics Education, etc. |
| Chair | Ken-ichi Yoshida(Univ. of Tsukuba) / Hitoshi Okada(NII) |
| Vice Chair | Hiroyuki Osaki(Kwansei Gakuin Univ.) / Masahiro Jibiki(NICT) / Tomoki Yoshihisa(Osaka Univ.) / Tetsuya Morizumi(Kanagawa Univ.) / Masaru Ogawa(Kobe Gakuin Univ.) |
| Secretary | Hiroyuki Osaki(Tokyo Inst. of Tech.) / Masahiro Jibiki(Ritsumeikan Univ.) / Tomoki Yoshihisa(Kyushu Univ.) / Tetsuya Morizumi(Gifu Shotoku Gakuen Univ.) / Masaru Ogawa |
| Assistant | Yusuke Sakumoto(Tokyo Metropolitan Univ.) / Yuichiro Hei(KDDI R&D Labs.) / Toshiki Watanabe(NEC) / Kanako Kawaguchi(Tokyo Univ. of the Arts) / Akiyoshi Kabeya(Chiba Univ.) |
| Paper Information | |
| Registration To | Technical Committee on Internet Architecture / Technical Committee on Social Implications of Technology and Information Ethics / Special Interest Group on Internet and Operation Technology |
|---|---|
| Language | ENG |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Struggling against New-Born Malwares Attached to Mails |
| Sub Title (in English) | |
| Keyword(1) | security |
| Keyword(2) | targeted attacks |
| Keyword(3) | mail attachment |
| Keyword(4) | malware |
| Keyword(5) | anomaly detection |
| 1st Author's Name | Motoyuki Ohmori |
| 1st Author's Affiliation | Tottori University(Tottori Univ.) |
| 2nd Author's Name | Naoki Miyata |
| 2nd Author's Affiliation | Tottori University(Tottori Univ.) |
| 3rd Author's Name | Kiyoyuki Nakashima |
| 3rd Author's Affiliation | Tottori University(Tottori Univ.) |
| 4th Author's Name | Kenichi Takahashi |
| 4th Author's Affiliation | Tottori University(Tottori Univ.) |
| Date | 2017-03-03 |
| Paper # | SITE2016-70,IA2016-100 |
| Volume (vol) | vol.116 |
| Number (no) | SITE-490,IA-491 |
| Page | pp.pp.51-56(SITE), pp.51-56(IA), |
| #Pages | 6 |
| Date of Issue | 2017-02-24 (SITE, IA) |