{"id":201534,"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00201534","sets":["581:9633:9645"]},"path":["9645"],"owner":"33195","recid":"201534","title":["文字列構造に着目したWebアプリケーションに対する攻撃のアノマリ検知手法"],"pubdate":{"attribute_name":"公開日","attribute_value":"2019-12-15"},"_buckets":{"deposit":"779c7dd9-55e6-4e73-8507-c66f749031d8"},"_deposit":{"id":"201534","pid":{"type":"depid","value":"201534","revision_id":0},"owners":[33195],"status":"published","created_by":33195},"item_title":"文字列構造に着目したWebアプリケーションに対する攻撃のアノマリ検知手法","author_link":["493320","493325","493316","493322","493323","493324","493317","493318","493319","493321"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"文字列構造に着目したWebアプリケーションに対する攻撃のアノマリ検知手法"},{"subitem_title":"Detecting Malicious Inputs of Web Application Using Character Structure Profiling","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"[特集：ユーザブルセキュリティ] Webセキュリティ，アノマリ検知，HTTP","subitem_subject_scheme":"Other"}]},"item_type_id":"2","publish_date":"2019-12-15","item_2_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"NTTセキュアプラットフォーム研究所／京都大学大学院情報学研究科"},{"subitem_text_value":"NTTセキュアプラットフォーム研究所"},{"subitem_text_value":"NTTセキュアプラットフォーム研究所"},{"subitem_text_value":"名古屋大学情報基盤センター"},{"subitem_text_value":"国立情報学研究所アーキテクチャ科学研究系"}]},"item_2_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"NTT Secure Platform Laboratories / Graduate School of Informatics, Kyoto University","subitem_text_language":"en"},{"subitem_text_value":"NTT Secure Platform Laboratories","subitem_text_language":"en"},{"subitem_text_value":"NTT Secure Platform Laboratories","subitem_text_language":"en"},{"subitem_text_value":"Information Technology Center, Nagoya University","subitem_text_language":"en"},{"subitem_text_value":"Information Systems Architecture Science, National Institute of Informatics","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/201534/files/IPSJ-JNL6012017.pdf","label":"IPSJ-JNL6012017.pdf"},"date":[{"dateType":"Available","dateValue":"2021-12-15"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-JNL6012017.pdf","filesize":[{"value":"1.2 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"8"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"004e6c89-2938-43dc-9afb-b2bfc58d151a","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2019 by the Information Processing Society of Japan"}]},"item_2_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"鐘本, 楊"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"青木, 一史"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"三好, 潤"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"嶋田, 創"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"高倉, 弘喜"}],"nameIdentifiers":[{}]}]},"item_2_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Yo, Kanemoto","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Kazufumi, Aoki","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Jun, Miyoshi","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Hajime, Shimada","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Hiroki, Takakura","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_2_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN00116647","subitem_source_identifier_type":"NCID"}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_6501","resourcetype":"journal article"}]},"item_2_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"1882-7764","subitem_source_identifier_type":"ISSN"}]},"item_2_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"Webアプリケーションの脆弱性を悪用する攻撃は絶えず行われており，攻撃の中でも未知攻撃の検知はいまだに重要な問題である．未知攻撃を発見する手法として，アノマリ検知を用いるのが一般的だが，誤検知が多いという課題が存在する．本研究ではHTTPリクエストの各要素の文字列の構造に着目し，学習を行うことで，誤検知を低減することを目指す．評価の結果，既存のアノマリ検知手法に比べ提案手法の方が精度が高く，また性能も実用的な処理速度であることを示す．","subitem_description_type":"Other"}]},"item_2_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"Web attacks that exploit web application's vulnerabilities are still occurring and detecting unknown attacks is still major problems. Anomaly detection is effective for detecting unknown attacks, but it also suffers from false positives. To reduce false positives, we propose a novel anomaly detection method which creates abstract structure profile for each HTTP request component. The evaluation results show that our approach is superior than existing methods, and performance is practical.","subitem_description_type":"Other"}]},"item_2_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"2233","bibliographic_titles":[{"bibliographic_title":"情報処理学会論文誌"}],"bibliographicPageStart":"2223","bibliographicIssueDates":{"bibliographicIssueDate":"2019-12-15","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"12","bibliographicVolumeNumber":"60"}]},"relation_version_is_last":true,"weko_creator_id":"33195"},"updated":"2025-01-19T20:59:22.006470+00:00","created":"2025-01-19T01:04:47.689414+00:00","links":{}}