{"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00174666","sets":["581:8417:8427"]},"path":["8427"],"owner":"11","recid":"174666","title":["通信プロトコルのヘッダの特徴に基づく不正通信の検知手法"],"pubdate":{"attribute_name":"公開日","attribute_value":"2016-09-15"},"_buckets":{"deposit":"dba9a971-9452-4619-bfd1-2ee07e4587b0"},"_deposit":{"id":"174666","pid":{"type":"depid","value":"174666","revision_id":0},"owners":[11],"status":"published","created_by":11},"item_title":"通信プロトコルのヘッダの特徴に基づく不正通信の検知手法","author_link":["360400","360405","360395","360393","360412","360392","360408","360403","360394","360415","360399","360397","360410","360406","360398","360411","360402","360414","360396","360409","360413","360407","360404","360401"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"通信プロトコルのヘッダの特徴に基づく不正通信の検知手法"},{"subitem_title":"Detection Method for Malicious Packets with Characteristic Network Protocol Header","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"[特集：社会の変革に挑戦するセキュリティ技術とプライバシー保護技術（推薦論文）] 不正通信検知，ネットワークスタック，ダークネット観測","subitem_subject_scheme":"Other"}]},"item_type_id":"2","publish_date":"2016-09-15","item_2_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"横浜国立大学／現在，NTTセキュアプラットフォーム研究所"},{"subitem_text_value":"横浜国立大学"},{"subitem_text_value":"横浜国立大学／情報通信研究機構"},{"subitem_text_value":"KDDI株式会社"},{"subitem_text_value":"情報通信研究機構"},{"subitem_text_value":"情報通信研究機構"},{"subitem_text_value":"株式会社クルウィット"},{"subitem_text_value":"情報通信研究機構"},{"subitem_text_value":"情報通信研究機構"},{"subitem_text_value":"情報通信研究機構"},{"subitem_text_value":"横浜国立大学大学院環境情報研究院／横浜国立大学先端科学高等研究院"},{"subitem_text_value":"横浜国立大学大学院環境情報研究院／横浜国立大学先端科学高等研究院"}]},"item_2_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Yokohama National University / Presently with NTT Secure Platform Laboratories, NTT Corporation","subitem_text_language":"en"},{"subitem_text_value":"Yokohama National University","subitem_text_language":"en"},{"subitem_text_value":"Yokohama National University / National Institute of Information and Communications Technology","subitem_text_language":"en"},{"subitem_text_value":"KDDI Corporation","subitem_text_language":"en"},{"subitem_text_value":"National Institute of Information and Communications Technology","subitem_text_language":"en"},{"subitem_text_value":"National Institute of Information and Communications Technology","subitem_text_language":"en"},{"subitem_text_value":"clwit Inc.","subitem_text_language":"en"},{"subitem_text_value":"National Institute of Information and Communications Technology","subitem_text_language":"en"},{"subitem_text_value":"National Institute of Information and Communications Technology","subitem_text_language":"en"},{"subitem_text_value":"National Institute of Information and Communications Technology","subitem_text_language":"en"},{"subitem_text_value":"Graduate School of Environment and Information Sciences , Yokohama National University/ Institute of Advanced Sciences, Yokohama National University","subitem_text_language":"en"},{"subitem_text_value":"Graduate School of Environment and Information Sciences , Yokohama National University/ Institute of Advanced Sciences, Yokohama National University","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/174666/files/IPSJ-JNL5709015.pdf","label":"IPSJ-JNL5709015.pdf"},"date":[{"dateType":"Available","dateValue":"2018-09-15"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-JNL5709015.pdf","filesize":[{"value":"2.0 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"8"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"ec4395c4-2a32-48b1-ab6a-5db74d378fec","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2016 by the Information Processing Society of Japan"}]},"item_2_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"小出, 駿"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"鈴木, 将吾"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"牧田, 大佑"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"村上, 洸介"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"笠間, 貴弘"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"鈴木, 未央"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"島村, 隼平"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"衛藤, 将史"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"井上, 大介"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"中尾, 康二"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"吉岡, 克成"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"松本, 勉"}],"nameIdentifiers":[{}]}]},"item_2_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Takashi, Koide","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Shogo, Suzuki","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Daisuke, Makita","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Kosuke, Murakami","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Takahiro, Kasama","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Mio, Suzuki","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Jumpei, Shimamura","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Masashi, Eto","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Daisuke, Inoue","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Koji, Nakao","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Katsunari, Yoshioka","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Tsutomu, Matsumoto","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_2_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN00116647","subitem_source_identifier_type":"NCID"}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_6501","resourcetype":"journal article"}]},"item_2_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"1882-7764","subitem_source_identifier_type":"ISSN"}]},"item_2_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"独自のネットワークを実装したマルウェアやツールが生成したパケットは，ヘッダに固有の特徴を持つことがある．本論文では，TCPヘッダのシーケンス番号，IPヘッダのID値，およびDNSのヘッダのID値等のフィールドの値を組み合わせたシグネチャを作成し，単一のパケットから送信元のマルウェアを特定する手法を提案する．マクロ解析とミクロ解析の相関分析により提案手法の有効性を示し，不正通信の分析事例を報告する．","subitem_description_type":"Other"}]},"item_2_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"The packets from malware and network tools that have their own implementation of network stack may have characteristic packet headers. In this paper, we propose a technique for packet detection by generating signatures using sequence number in the TCP header, ID in the IP header, ID in the DNS header, and so on. By comparing the correlation between macro- and micro-analysis, we confirm the effectiveness of our technique and report the analysis case of malicious packets.","subitem_description_type":"Other"}]},"item_2_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"2002","bibliographic_titles":[{"bibliographic_title":"情報処理学会論文誌"}],"bibliographicPageStart":"1986","bibliographicIssueDates":{"bibliographicIssueDate":"2016-09-15","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"9","bibliographicVolumeNumber":"57"}]},"relation_version_is_last":true,"weko_creator_id":"11"},"updated":"2025-01-20T06:36:27.817358+00:00","created":"2025-01-19T00:44:49.837416+00:00","links":{},"id":174666}