{"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00213574","sets":["1164:6389:10492:10740"]},"path":["10740"],"owner":"44499","recid":"213574","title":["ONLSTMとAttention機構によるXSS攻撃の検知に関する一考察"],"pubdate":{"attribute_name":"公開日","attribute_value":"2021-11-01"},"_buckets":{"deposit":"ad071a2c-7335-42e4-9697-1374014a9c33"},"_deposit":{"id":"213574","pid":{"type":"depid","value":"213574","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"ONLSTMとAttention機構によるXSS攻撃の検知に関する一考察","author_link":["546709","546708"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"ONLSTMとAttention機構によるXSS攻撃の検知に関する一考察"}]},"item_type_id":"4","publish_date":"2021-11-01","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"防衛大学校"},{"subitem_text_value":"防衛大学校"}]},"item_4_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"National Defense Academy","subitem_text_language":"en"},{"subitem_text_value":"National Defense Academy","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/213574/files/IPSJ-SPT21045011.pdf","label":"IPSJ-SPT21045011.pdf"},"date":[{"dateType":"Available","dateValue":"2023-11-01"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-SPT21045011.pdf","filesize":[{"value":"902.1 kB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"46"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"7111dcc4-1eac-44d8-ad68-0cbfe5cb9505","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2021 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"宮崎, 裕一郎"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"三村, 守"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AA12628305","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8671","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"ウェブアプリケーションに対する XSS 攻撃は，2020 年度第 3 四半期に IPA に提出された届出の約 58％ を占めている．これに対し，スキーム，ホスト名，ドメイン名などから，機械学習モデルを用いて XSS 攻撃を検知する手法が提案されている．しかしながら，これらの研究の評価に用いたデータセットには，実際の XSS 攻撃の特徴が含まれておらず実用的とは言い難い．そこで本研究では，攻撃の特徴が表れるディレクトリやパラメータに着目し，実際の XSS 攻撃の特徴を検知することを試みた．さらに，Attention 機構を用いて注目した特徴を視覚化することで，モデルの検知原理の解明を試みた．本研究では，Attention 機構と ONLSTM (Ordered-Neurons Long Short-Term Memory) を組み合わせた検知モデルを提案する．検知精度の評価は，XSSed.com および CIC-IDS2017 データセットから 45,656 体のサンプルを抽出し，ディレクトリやパラメータを含む不均衡なデータセットを作成して実施した．その結果，提案手法ではF 値 0.98 の高精度で XSS 攻撃を検知することを確認した．さらに，Attention 機構を用いることで，提案手法が XSS 攻撃の特徴に基づいて検知していることを確認した．","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"8","bibliographic_titles":[{"bibliographic_title":"研究報告セキュリティ心理学とトラスト（SPT）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2021-11-01","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"11","bibliographicVolumeNumber":"2021-SPT-45"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"id":213574,"updated":"2025-01-19T17:06:48.305146+00:00","links":{},"created":"2025-01-19T01:14:26.521683+00:00"}