{"links":{},"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00175832","sets":["6164:6165:6462:8948"]},"path":["8948"],"owner":"11","recid":"175832","title":["オブジェクト間の参照関係に基づいた悪性PDF分類手法"],"pubdate":{"attribute_name":"公開日","attribute_value":"2016-10-04"},"_buckets":{"deposit":"5f44b40c-80a5-458f-b8d8-7610c549a31d"},"_deposit":{"id":"175832","pid":{"type":"depid","value":"175832","revision_id":0},"owners":[11],"status":"published","created_by":11},"item_title":"オブジェクト間の参照関係に基づいた悪性PDF分類手法","author_link":["368126","368123","368124","368125"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"オブジェクト間の参照関係に基づいた悪性PDF分類手法"},{"subitem_title":"A Path Tracing Method for Classifying Malicious PDF Files","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"MWS，悪性PDF，JavaScript，標的型攻撃，Drive-by Download攻撃","subitem_subject_scheme":"Other"}]},"item_type_id":"18","publish_date":"2016-10-04","item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_18_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"弘前大学大学院理工学研究科"},{"subitem_text_value":"弘前大学大学院理工学研究科"}]},"item_18_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"Graduate School of Science and Technology, Hirosaki University","subitem_text_language":"en"},{"subitem_text_value":"Graduate School of Science and Technology, Hirosaki University","subitem_text_language":"en"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/175832/files/IPSJCSS2016132.pdf","label":"IPSJCSS2016132.pdf"},"date":[{"dateType":"Available","dateValue":"2018-10-04"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJCSS2016132.pdf","filesize":[{"value":"933.6 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"30"},{"tax":["include_tax"],"price":"0","billingrole":"46"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"6ebc49cd-21a5-4e3c-a7db-35752f7baa26","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2016 by the Information Processing Society of Japan"}]},"item_18_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"今, 健吾"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"長瀬, 智行"}],"nameIdentifiers":[{}]}]},"item_18_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Kengo, Kon","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Tomoyuki, Nagase","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_18_relation_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_relation_type_id":{"subitem_relation_type_select":"NCID","subitem_relation_type_id_text":"ISSN　1882-0840"}}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_5794","resourcetype":"conference paper"}]},"item_18_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"PDF  (Portable Document Format)  ファイルは電子文書のフォーマットとして広く定着しており，現在も多くの場面で使用されている．そのため，攻撃者の格好のターゲットであり，標的型攻撃や Drive-by Download 攻撃では依然として悪性 PDF ファイルが利用され続けている．本稿では，悪性 PDF ファイルに含まれるオブジェクト間の参照関係を辿った Path を抽出し，悪性 PDF ファイル特有の Path 構造に着目することで，悪性 PDF ファイルがいくつかのパターンに分類できることを示す．また，これらのパターンを利用することによる悪性 PDF の検知への応用や有効性について考察する．","subitem_description_type":"Other"}]},"item_18_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"PDF (Portable Document Format) files are widely used as a format for electronic documents. A malicious code can be intentionally imbedded in PDF files during targeted and Drive-by Download attacks.  In this paper, a path tracing method to define the characteristics of the relationship between objects in a PDF file is proposed. The method is scrutinized a file that may contain malicious codes and classified the types of the patterns. Accordingly, the effectiveness of the detected malicious PDF using these patterns is also considered.","subitem_description_type":"Other"}]},"item_18_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"913","bibliographic_titles":[{"bibliographic_title":"コンピュータセキュリティシンポジウム2016論文集"}],"bibliographicPageStart":"907","bibliographicIssueDates":{"bibliographicIssueDate":"2016-10-04","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"2","bibliographicVolumeNumber":"2016"}]},"relation_version_is_last":true,"weko_creator_id":"11"},"updated":"2025-01-20T06:05:37.317070+00:00","created":"2025-01-19T00:45:33.752449+00:00","id":175832}