{"updated":"2025-01-19T23:07:19.895316+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00195417","sets":["581:9633:9636"]},"path":["9636"],"owner":"44499","recid":"195417","title":["攻撃コードのエミュレーションに基づくWebアプリケーションに対する攻撃の成否判定手法"],"pubdate":{"attribute_name":"公開日","attribute_value":"2019-03-15"},"_buckets":{"deposit":"2d356cdb-5354-4392-b804-e2bde57e9a56"},"_deposit":{"id":"195417","pid":{"type":"depid","value":"195417","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"攻撃コードのエミュレーションに基づくWebアプリケーションに対する攻撃の成否判定手法","author_link":["465248","465246","465250","465254","465252","465245","465253","465251","465247","465249"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"攻撃コードのエミュレーションに基づくWebアプリケーションに対する攻撃の成否判定手法"},{"subitem_title":"Detecting Successful Attacks against Web Application based-on Attack Code Emulation","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"[一般論文（推薦論文, 特選論文）] Webセキュリティ，アラート検証，IOC，エミュレーション","subitem_subject_scheme":"Other"}]},"item_type_id":"2","publish_date":"2019-03-15","item_2_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"NTTセキュアプラットフォーム研究所／京都大学大学院情報学研究科"},{"subitem_text_value":"NTTセキュアプラットフォーム研究所"},{"subitem_text_value":"NTTセキュアプラットフォーム研究所"},{"subitem_text_value":"名古屋大学情報基盤センター"},{"subitem_text_value":"国立情報学研究所アーキテクチャ科学研究系"}]},"item_2_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"NTT Secure Platform Laboratories / Graduate School of Informatics, Kyoto University","subitem_text_language":"en"},{"subitem_text_value":"NTT Secure Platform Laboratories","subitem_text_language":"en"},{"subitem_text_value":"NTT Secure Platform Laboratories","subitem_text_language":"en"},{"subitem_text_value":"Information Technology Center, Nagoya University","subitem_text_language":"en"},{"subitem_text_value":"Information Systems Architecture Science, National Institute of Informatics","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/195417/files/IPSJ-JNL6003029.pdf","label":"IPSJ-JNL6003029.pdf"},"date":[{"dateType":"Available","dateValue":"2021-03-15"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-JNL6003029.pdf","filesize":[{"value":"1.1 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"8"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"1f948edf-8441-46bc-b920-62568d27c374","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2019 by the Information Processing Society of Japan"}]},"item_2_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"鐘本, 楊"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"青木, 一史"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"三好, 潤"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"嶋田, 創"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"高倉, 弘喜"}],"nameIdentifiers":[{}]}]},"item_2_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Yo, Kanemoto","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Kazufumi, Aoki","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Jun, Miyoshi","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Hajime, Shimada","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Hiroki, Takakura","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_2_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN00116647","subitem_source_identifier_type":"NCID"}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_6501","resourcetype":"journal article"}]},"item_2_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"1882-7764","subitem_source_identifier_type":"ISSN"}]},"item_2_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"WAFやIDS等のセキュリティ製品はWebに対する攻撃検知において重要な役割を担っている．しかし，大量のアラートから重大なインシデントに関わるアラートを人手で探し出すには多くの時間を要する．本研究では，アラートの重要度を決定するための攻撃成否判定手法を提案する．提案手法では攻撃コードのエミュレーションを行い，攻撃成功時の痕跡を抽出する．この痕跡がHTTPレスポンスに含まれるか否かで攻撃の成否を判定し，アラートの重要度を決定する．提案手法の精度・性能評価結果，および発見した攻撃事例から，その実用性を示す．","subitem_description_type":"Other"}]},"item_2_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"Security appliances such as WAFs and IDSs contribute to detecting threats of web attacks greatly. However, it requires much time when we discover critical incident related alerts from massive alerts of security appliances. In this research, we propose a system that verifies the criticalness of alerts based on an indicator of attacks. The proposed system emulates exploit code to extract an indicator of succeeded attacks. By matching the indicator with HTTP response content, we can confirm success or failure of the attack which is directly connected to importance of the alert. We show an effectiveness of the system through accuracy/performance evaluation, and case studies.","subitem_description_type":"Other"}]},"item_2_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"955","bibliographic_titles":[{"bibliographic_title":"情報処理学会論文誌"}],"bibliographicPageStart":"945","bibliographicIssueDates":{"bibliographicIssueDate":"2019-03-15","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"3","bibliographicVolumeNumber":"60"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"created":"2025-01-19T01:00:20.971279+00:00","id":195417,"links":{}}