| Presentation | 2018-06-01 Implementation and Evaluation of Intrusion Detection System for Malicious PC by Sensor Hosts Hiroaki Kuno, Satoshi Kimura, Hiroyuki Inaba, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | In recent years, Intrusion Detection System(IDS) is not able to catch the unknown attack as malware and its variant are increasing. To solve this problem, the researchers have conducted the prediction of unknown attacks using various data sets. However, it is difficult because of a lot of alerts or necessity of a data set in advance. So we consider new IDS that can deal with unknown attacks using sensor hosts and that can create signatures automatically by monitoring the malicious PCs and its source IP addresses. However, when inserting the alerts to the widely used relational database(RDB), unacceptable delay occurs. Therefore, we introduce MongoDB which is known as NoSQL in recent years to improve the insertion performance. As a result, it is possible to solve the delay problem by using MongoDB, andwe also report that the system can detect attack trends from malicious PCs activity. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Intrusion Detection System / IDS / Sensor Host / NoSQL / MongoDB |
| Paper # | SITE2018-4 |
| Date of Issue | 2018-05-24 (SITE) |
| Conference Information | |
| Committee | SITE / IPSJ-EIP |
|---|---|
| Conference Date | 2018/5/31(2days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | Hitoshi Okada(NII) / Itaru Kaneko(Tokyo Polytechnic Univ.) |
| Vice Chair | Tetsuya Morizumi(Kanagawa Univ.) / Masaru Ogawa(Kobe Gakuin Univ.) |
| Secretary | Tetsuya Morizumi(Gifu Shotoku Gakuen Univ.) / Masaru Ogawa(Tokyo Univ. of the Arts) / (Hikari Sogoh Lowoffices) |
| Assistant | Akiyoshi Kabeya(Chiba Univ.) / Hisanori Kato(KDDI) |
| Paper Information | |
| Registration To | Technical Committee on Social Implications of Technology and Information Ethics / Special Interest Group on Electronic Intellectual Property |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Implementation and Evaluation of Intrusion Detection System for Malicious PC by Sensor Hosts |
| Sub Title (in English) | |
| Keyword(1) | Intrusion Detection System |
| Keyword(2) | IDS |
| Keyword(3) | Sensor Host |
| Keyword(4) | NoSQL |
| Keyword(5) | MongoDB |
| 1st Author's Name | Hiroaki Kuno |
| 1st Author's Affiliation | Kyoto Institute of Technology(KIT) |
| 2nd Author's Name | Satoshi Kimura |
| 2nd Author's Affiliation | Kyoto Institute of Technology(KIT) |
| 3rd Author's Name | Hiroyuki Inaba |
| 3rd Author's Affiliation | Kyoto Institute of Technology(KIT) |
| Date | 2018-06-01 |
| Paper # | SITE2018-4 |
| Volume (vol) | vol.118 |
| Number (no) | SITE-70 |
| Page | pp.pp.95-99(SITE), |
| #Pages | 5 |
| Date of Issue | 2018-05-24 (SITE) |