| Presentation | 2012-06-22 Network Observation and Analysis Report on nicter : Transition and Categorization of DDoS Backscatter Junji NAKAZATO, Jumpei SHIMAMURA, Masashi ETO, Daisuke INOUE, Koji NAKAO, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | Since e-commerce progressed quickly, a DDoS attack became a social problem. A lot of rebounding packets called backscatter from victim host are observed by network monitoring of the nicter. In this report, we showed a long-term statistics of backscatter packets from 2010 through 2012 and showed that it is increasing every year. Moreover, using some parameters in a packet, we extracted a characteristic of backscatter, and then we categorized backscatter events that observed in the past. Finally, we applied this method to identifying the tool used for the DDoS attack. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Incident analysis / Malware / Dynamic Analysis |
| Paper # | IA2012-7,ICSS2012-7 |
| Date of Issue |
| Conference Information | |
| Committee | ICSS |
|---|---|
| Conference Date | 2012/6/14(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information and Communication System Security (ICSS) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Network Observation and Analysis Report on nicter : Transition and Categorization of DDoS Backscatter |
| Sub Title (in English) | |
| Keyword(1) | Incident analysis |
| Keyword(2) | Malware |
| Keyword(3) | Dynamic Analysis |
| 1st Author's Name | Junji NAKAZATO |
| 1st Author's Affiliation | National Institute of Information and Communications Technology() |
| 2nd Author's Name | Jumpei SHIMAMURA |
| 2nd Author's Affiliation | clwit Inc. |
| 3rd Author's Name | Masashi ETO |
| 3rd Author's Affiliation | National Institute of Information and Communications Technology |
| 4th Author's Name | Daisuke INOUE |
| 4th Author's Affiliation | National Institute of Information and Communications Technology |
| 5th Author's Name | Koji NAKAO |
| 5th Author's Affiliation | National Institute of Information and Communications Technology |
| Date | 2012-06-22 |
| Paper # | IA2012-7,ICSS2012-7 |
| Volume (vol) | vol.112 |
| Number (no) | 91 |
| Page | pp.pp.- |
| #Pages | 6 |
| Date of Issue | |