| Presentation | 2010-03-26 Investigation of Attacks to Websites using Multi-domain Web-based Honeypots Naoto TANIMOTO, Takeshi YAGI, Takeo HARIU, Mitsutaka ITOH, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | Recently, a large number of websites are under attacks from attackers. Many compromised websites are used by attackers as hopping sites to attack other websites. Attackers use RFI(remote file inclusion)vulnerabilities to make victim websites download malware from other websites and execute the malware in its victim websites. Security researchers and security vendors use web-based honeypots to collect attacking information, but it is not clear where to set their web-based honeypots. In this paper, we investigate characteristics of RFI attacks from some web-based honeypots set in some domains. Our investigation reveals that there is no difference of collecting ability in different domain set web-based honeypot, but making some number of search engine indexed web-based honeypots is the most important factor to collect many attacking information. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | security / honeypot / website / remote file inclusion |
| Paper # | ICSS2009-66 |
| Date of Issue |
| Conference Information | |
| Committee | ICSS |
|---|---|
| Conference Date | 2010/3/19(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information and Communication System Security (ICSS) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Investigation of Attacks to Websites using Multi-domain Web-based Honeypots |
| Sub Title (in English) | |
| Keyword(1) | security |
| Keyword(2) | honeypot |
| Keyword(3) | website |
| Keyword(4) | remote file inclusion |
| 1st Author's Name | Naoto TANIMOTO |
| 1st Author's Affiliation | () |
| 2nd Author's Name | Takeshi YAGI |
| 2nd Author's Affiliation | |
| 3rd Author's Name | Takeo HARIU |
| 3rd Author's Affiliation | |
| 4th Author's Name | Mitsutaka ITOH |
| 4th Author's Affiliation | |
| Date | 2010-03-26 |
| Paper # | ICSS2009-66 |
| Volume (vol) | vol.109 |
| Number (no) | 476 |
| Page | pp.pp.- |
| #Pages | 4 |
| Date of Issue | |