{"created":"2025-05-14T01:00:35.865749+00:00","updated":"2025-05-14T01:00:40.207022+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:02002151","sets":["1164:4088:11911:1747183907775"]},"path":["1747183907775"],"owner":"80578","recid":"2002151","title":["eBPFを用いたIoT機器向けホスト型不正通信検知システムの開発"],"pubdate":{"attribute_name":"PubDate","attribute_value":"2025-05-22"},"_buckets":{"deposit":"4a956201-f0f8-4c00-8187-a063f63ef95c"},"_deposit":{"id":"2002151","pid":{"type":"depid","value":"2002151","revision_id":0},"owners":[80578],"status":"published","created_by":80578},"item_title":"eBPFを用いたIoT機器向けホスト型不正通信検知システムの開発","author_link":[],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"eBPFを用いたIoT機器向けホスト型不正通信検知システムの開発","subitem_title_language":"ja"},{"subitem_title":"Development of host-based intrusion detection system using eBPF for IoT devices","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"IOT","subitem_subject_scheme":"Other"}]},"item_type_id":"4","publish_date":"2025-05-22","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"大分大学理工学部"},{"subitem_text_value":"大分大学大学院工学研究科／現在，京セラ株式会社"},{"subitem_text_value":"大分大学情報基盤センター"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/2002151/files/IPSJ-IOT25069003.pdf","label":"IPSJ-IOT25069003.pdf"},"date":[{"dateType":"Available","dateValue":"2027-05-22"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-IOT25069003.pdf","filesize":[{"value":"2.0 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"43"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"c60bf7b9-9af1-4433-bf71-129c5d4b246e","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2025 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"池部,実"}]},{"creatorNames":[{"creatorName":"秋月,沢竜生"}]},{"creatorNames":[{"creatorName":"吉崎,弘一"}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Minoru Ikebe","creatorNameLang":"en"}]},{"creatorNames":[{"creatorName":"Takuro Akizuki","creatorNameLang":"en"}]},{"creatorNames":[{"creatorName":"Koichi Yoshizaki","creatorNameLang":"en"}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AA12326962","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8787","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"マルウェアに感染したIoT(Internet of Things)機器からなるボットネットによる攻撃が深刻な被害をもたらしている．さらに，日々，新たなマルウェアが出現し攻撃方法が変化している．そのため，次々と出現するマルウェアからの感染を防ぎ，IoT機器を守ることを目的として，LinuxベースのIoT機器を対象とし，マルウェアによるスキャンなどの通信パターンに着目して不正通信を検知するIoT機器向けホスト型不正通信検知システムを提案する．IoT機器はCPUやメモリなどのリソースが少なく，またバッテリー駆動の場合があることから，検知システムをIoT機器上で動作させる際に過度なリソース消費や消費電力増加を抑える必要がある．そこで，提案システムでは，カーネル空間で不正通信を検知することで，パケット取得にかかるオーバヘッドを削減し，リソース消費と電力消費を抑えることを目標として，eBPFを用いた実装による検知システムを開発した．開発したシステムでは，新たなマルウェアによる攻撃を検知するためのプログラムを複数登録でき，順番に呼び出すことができる．Raspberry PiをLinuxが動作するIoT機器とみなして，リソース消費量・電力消費量を評価した．また，開発システムと自身らの先行研究の処理時間を計測し，複数の検知プログラムを登録することへの影響を評価した．その結果，提案システムにおいて，リソース・消費電力を過度に消費せずに不正通信を検知できることを確認し，eBPFを用いた開発システムは処理時間が短く，複数の検知プログラムを動作させる場合に適していた．","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"8","bibliographic_titles":[{"bibliographic_title":"研究報告インターネットと運用技術（IOT）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2025-05-22","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"3","bibliographicVolumeNumber":"2025-IOT-69"}]},"relation_version_is_last":true,"weko_creator_id":"80578"},"id":2002151,"links":{}}