{"updated":"2025-01-19T15:02:01.257118+00:00","metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00218789","sets":["1164:4088:10830:10916"]},"path":["10916"],"owner":"44499","recid":"218789","title":["OpenFlowのフロー統計情報を用いたTCP scan検知手法の提案"],"pubdate":{"attribute_name":"公開日","attribute_value":"2022-07-05"},"_buckets":{"deposit":"f7064480-859f-4bbc-af26-e987f603bc27"},"_deposit":{"id":"218789","pid":{"type":"depid","value":"218789","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"OpenFlowのフロー統計情報を用いたTCP scan検知手法の提案","author_link":["569703","569705","569704","569706"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"OpenFlowのフロー統計情報を用いたTCP scan検知手法の提案"},{"subitem_title":"Proposal for TCP scan detection method using flow statistics of OpenFlow","subitem_title_language":"en"}]},"item_type_id":"4","publish_date":"2022-07-05","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"大分大学大学院工学研究科"},{"subitem_text_value":"大分大学理工学部"},{"subitem_text_value":"大分大学学術情報拠点情報基盤センター"},{"subitem_text_value":"大分大学学術情報拠点情報基盤センター"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/218789/files/IPSJ-IOT22058002.pdf","label":"IPSJ-IOT22058002.pdf"},"date":[{"dateType":"Available","dateValue":"2024-07-05"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-IOT22058002.pdf","filesize":[{"value":"1.3 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"43"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"fdc97957-5e34-4468-aad9-2857bf46fdbc","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2022 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"福原, 悠真"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"池部, 実"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"吉崎, 弘一"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"吉田, 和幸"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AA12326962","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8787","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"我々は，これまでインターネットと学内ネットワークの境界でポートミラーリングから攻撃を検知・遮断する不正通信検知システムを開発・運用してきた．さらに，不正通信検知システムで検知した攻撃者を，OpenFlow スイッチにて遮断する手法を提案した．しかし，従来手法では複数の OpenFlow スイッチから構成されるネットワークの場合にはポートミラーリングしたパケットを不正通信検知システムに送るためのネットワークが必要であり，実現には至っていない．そこで，本研究では OpenFlow スイッチの統計情報を用いて OpenFlow コントローラにて攻撃者からの scan を検知する手法を提案する．scanは通常の TCP 通信に比べ，送信元からの SYN パケットが多くなることに着目した検知手法を検討した．OpenFlow スイッチから各フローエントリの受信パケット数を取得し SYN パケットとそれ以外のパケットの比率により scan を検知・遮断する．提案手法を仮想ネットワーク上で実装し，実験・評価した．複数の条件で実験した結果，scan の送信元 IP アドレスを攻撃者として検知・遮断できることを確認した．","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"8","bibliographic_titles":[{"bibliographic_title":"研究報告インターネットと運用技術（IOT）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2022-07-05","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"2","bibliographicVolumeNumber":"2022-IOT-58"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"created":"2025-01-19T01:19:08.185690+00:00","id":218789,"links":{}}