{"updated":"2025-01-19T18:49:59.546630+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00208512","sets":["6164:6165:6462:10428"]},"path":["10428"],"owner":"44499","recid":"208512","title":["動的解析ログを用いた特徴量の予測によるマルウェアの早期機能推定に関する検討"],"pubdate":{"attribute_name":"公開日","attribute_value":"2020-10-19"},"_buckets":{"deposit":"7fed1c24-a5ee-465f-8e34-37d840f699a9"},"_deposit":{"id":"208512","pid":{"type":"depid","value":"208512","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"動的解析ログを用いた特徴量の予測によるマルウェアの早期機能推定に関する検討","author_link":["523282","523289","523291","523287","523286","523290","523284","523288","523283","523285"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"動的解析ログを用いた特徴量の予測によるマルウェアの早期機能推定に関する検討"},{"subitem_title":"A Study on Early Function Estimation of Malware by Prediction of Features Using Dynamic Analysis Log","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"MWS，マルウェア，動的解析ログ，機能推定，早期推定","subitem_subject_scheme":"Other"}]},"item_type_id":"18","publish_date":"2020-10-19","item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_18_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"電気通信大学"},{"subitem_text_value":"株式会社FFRIセキュリティ"},{"subitem_text_value":"株式会社FFRIセキュリティ"},{"subitem_text_value":"電気通信大学"},{"subitem_text_value":"電気通信大学"}]},"item_18_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"The University of Electro-Communications","subitem_text_language":"en"},{"subitem_text_value":"FFRI Security, Inc.","subitem_text_language":"en"},{"subitem_text_value":"FFRI Security, Inc.","subitem_text_language":"en"},{"subitem_text_value":"The University of Electro-Communications","subitem_text_language":"en"},{"subitem_text_value":"The University of Electro-Communications","subitem_text_language":"en"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/208512/files/IPSJCSS2020084.pdf","label":"IPSJCSS2020084.pdf"},"date":[{"dateType":"Available","dateValue":"2022-10-19"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJCSS2020084.pdf","filesize":[{"value":"703.4 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"30"},{"tax":["include_tax"],"price":"0","billingrole":"46"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"dbe429d8-8e90-4900-a709-744704a210b6","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2020 by the Information Processing Society of Japan"}]},"item_18_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"朝倉, 紗斗至"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"中川, 恒"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"押場, 博光"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"吉浦, 裕"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"市野, 将嗣"}],"nameIdentifiers":[{}]}]},"item_18_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Satoshi, Asakura","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Ko, Nakagawa","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Hiromitsu, Oshiba","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Hiroshi, Yoshiura","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Masatsugu, Ichino","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_5794","resourcetype":"conference paper"}]},"item_18_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"近年，巧妙化するマルウェアを用いたサイバー攻撃により，その侵入を検知することが難しくなっている．マルウェアの侵入後においてその被害を最小限に抑えるため，早期にそのマルウェアの機能を推定することが必要であると考える．そこで，本研究では動的解析ログにおいて，記録時間の短いログの特徴量から長いログの特徴量を予測し，予測した特徴量を機能推定に利用することを提案する．実際に，MWS Datasetsの一部として提供されているSoliton Dataset 2019に含まれる動的解析ログ（Mark IIログおよびCuckooログ）を使用し，提案手法を用いた機能推定実験を行った．その結果，Mark IIログにおいて記録開始から5秒までのログに対し2.6%，およびCuckooログにおいて記録開始から1秒までのログに対し0.8%の推定精度の向上が見られた．","subitem_description_type":"Other"}]},"item_18_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"In recent years, cyber attacks using sophisticated malware have made it difficult to detect intrusions. In order to minimize the damage after a malware infiltration, we think it is necessary to estimatethe function of the malware at an early stage. In this paper, we propose to use the predicted features of the dynamic analysis log for function estimation from the features of logs with a short recording time. We conducted function estimation experiments using the proposed method with the dynamic analysis logs (Mark II logs and Cuckoo logs) included in the Soliton Dataset 2019, which is provided as part of MWS Datasets.The results showed 2.6% and 0.8% improvement in the estimation accuracy of Mark II logs and Cuckoo logs from the start of recording to 5 seconds and 1 second, respectively.","subitem_description_type":"Other"}]},"item_18_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"609","bibliographic_titles":[{"bibliographic_title":"コンピュータセキュリティシンポジウム2020論文集"}],"bibliographicPageStart":"602","bibliographicIssueDates":{"bibliographicIssueDate":"2020-10-19","bibliographicIssueDateType":"Issued"}}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"created":"2025-01-19T01:09:54.070670+00:00","id":208512,"links":{}}