Presentation 2018-06-01
Implementation and Evaluation of Intrusion Detection System for Malicious PC by Sensor Hosts
Hiroaki Kuno, Satoshi Kimura, Hiroyuki Inaba,
PDF Download Page PDF download Page Link
Abstract(in Japanese) (See Japanese page)
Abstract(in English) In recent years, Intrusion Detection System(IDS) is not able to catch the unknown attack as malware and its variant are increasing. To solve this problem, the researchers have conducted the prediction of unknown attacks using various data sets. However, it is difficult because of a lot of alerts or necessity of a data set in advance. So we consider new IDS that can deal with unknown attacks using sensor hosts and that can create signatures automatically by monitoring the malicious PCs and its source IP addresses. However, when inserting the alerts to the widely used relational database(RDB), unacceptable delay occurs. Therefore, we introduce MongoDB which is known as NoSQL in recent years to improve the insertion performance. As a result, it is possible to solve the delay problem by using MongoDB, andwe also report that the system can detect attack trends from malicious PCs activity.
Keyword(in Japanese) (See Japanese page)
Keyword(in English) Intrusion Detection System / IDS / Sensor Host / NoSQL / MongoDB
Paper # SITE2018-4
Date of Issue 2018-05-24 (SITE)

Conference Information
Committee SITE / IPSJ-EIP
Conference Date 2018/5/31(2days)
Place (in Japanese) (See Japanese page)
Place (in English)
Topics (in Japanese) (See Japanese page)
Topics (in English)
Chair Hitoshi Okada(NII) / Itaru Kaneko(Tokyo Polytechnic Univ.)
Vice Chair Tetsuya Morizumi(Kanagawa Univ.) / Masaru Ogawa(Kobe Gakuin Univ.)
Secretary Tetsuya Morizumi(Gifu Shotoku Gakuen Univ.) / Masaru Ogawa(Tokyo Univ. of the Arts) / (Hikari Sogoh Lowoffices)
Assistant Akiyoshi Kabeya(Chiba Univ.) / Hisanori Kato(KDDI)

Paper Information
Registration To Technical Committee on Social Implications of Technology and Information Ethics / Special Interest Group on Electronic Intellectual Property
Language JPN
Title (in Japanese) (See Japanese page)
Sub Title (in Japanese) (See Japanese page)
Title (in English) Implementation and Evaluation of Intrusion Detection System for Malicious PC by Sensor Hosts
Sub Title (in English)
Keyword(1) Intrusion Detection System
Keyword(2) IDS
Keyword(3) Sensor Host
Keyword(4) NoSQL
Keyword(5) MongoDB
1st Author's Name Hiroaki Kuno
1st Author's Affiliation Kyoto Institute of Technology(KIT)
2nd Author's Name Satoshi Kimura
2nd Author's Affiliation Kyoto Institute of Technology(KIT)
3rd Author's Name Hiroyuki Inaba
3rd Author's Affiliation Kyoto Institute of Technology(KIT)
Date 2018-06-01
Paper # SITE2018-4
Volume (vol) vol.118
Number (no) SITE-70
Page pp.pp.95-99(SITE),
#Pages 5
Date of Issue 2018-05-24 (SITE)