{"links":{},"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00227708","sets":["581:11107:11118"]},"path":["11118"],"owner":"44499","recid":"227708","title":["次世代型ウイルス対策ソフトとハイブリッド検出を実装するウイルス対策ソフトに対する回避攻撃"],"pubdate":{"attribute_name":"公開日","attribute_value":"2023-09-15"},"_buckets":{"deposit":"7a83da85-3679-49be-aab5-cf350cf5a492"},"_deposit":{"id":"227708","pid":{"type":"depid","value":"227708","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"次世代型ウイルス対策ソフトとハイブリッド検出を実装するウイルス対策ソフトに対する回避攻撃","author_link":["606864","606867","606868","606865","606869","606866"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"次世代型ウイルス対策ソフトとハイブリッド検出を実装するウイルス対策ソフトに対する回避攻撃"},{"subitem_title":"Evasion Attacks against Next Generation Anti-Virus Software and Antivirus Software Implementing Hybrid Detection","subitem_title_language":"en"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"[特集:サイバー空間を安全にするコンピュータセキュリティ技術] 次世代型ウイルス対策ソフト，機械学習，AI技術，回避攻撃","subitem_subject_scheme":"Other"}]},"item_type_id":"2","publish_date":"2023-09-15","item_2_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"株式会社NTTデータ／横浜国立大学大学院環境情報学府"},{"subitem_text_value":"横浜国立大学先端科学高等研究院／横浜国立大学大学院環境情報研究院"},{"subitem_text_value":"横浜国立大学先端科学高等研究院／横浜国立大学大学院環境情報研究院"}]},"item_2_text_4":{"attribute_name":"著者所属(英)","attribute_value_mlt":[{"subitem_text_value":"NTT DATA Corporation / Graduate School of Environment and Information Sciences, Yokohama National University","subitem_text_language":"en"},{"subitem_text_value":"Institute of Advanced Sciences, Yokohama National University / Faculty of Environment and Information Sciences, Yokohama National University","subitem_text_language":"en"},{"subitem_text_value":"Institute of Advanced Sciences, Yokohama National University / Faculty of Environment and Information Sciences, Yokohama National University","subitem_text_language":"en"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/227708/files/IPSJ-JNL6409013.pdf","label":"IPSJ-JNL6409013.pdf"},"date":[{"dateType":"Available","dateValue":"2025-09-15"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-JNL6409013.pdf","filesize":[{"value":"1.2 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"8"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"71215f40-fd75-422b-9f7f-f4ececdacfd0","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2023 by the Information Processing Society of Japan"}]},"item_2_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"新井, 悠"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"吉岡, 克成"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"松本, 勉"}],"nameIdentifiers":[{}]}]},"item_2_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Yu, Arai","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Katsunari, Yoshioka","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Tsutomu, Matsumoto","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_2_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN00116647","subitem_source_identifier_type":"NCID"}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_6501","resourcetype":"journal article"}]},"item_2_publisher_15":{"attribute_name":"公開者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"item_2_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"1882-7764","subitem_source_identifier_type":"ISSN"}]},"item_2_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"近年，次世代型ウイルス対策ソフト（Next Generation Anti-Virus: NGAV）という名称で，従来型ウイルス対策ソフトでは不可能であった，未知のマルウェアまでも検出が可能であることを長所としている製品が市場に投入されている．本研究では，証明書を使用して特定の文字列を既知のマルウェアに追加することにより，1,065検体を使用してNGAVに対して最大で約44%の見逃しを発生させた．また機械学習エンジンとシグネチャ検出をハイブリッドで実装している製品に対しても，本手法を用いることで最大で約59%の見逃しを発生させることも確認した．","subitem_description_type":"Other"}]},"item_2_description_8":{"attribute_name":"論文抄録(英)","attribute_value_mlt":[{"subitem_description":"In recent years, Next Generation Anti-Virus (NGAV) products have been introduced to the market, which have the advantage of being able to detect even unknown malware, which is not possible with traditional anti-virus software. In this study, we used 1,065 samples to generate up to approximately 44% misses against NGAV by adding specific strings to known malware using certificates. We also confirmed that our method can generate up to 59% misses against products with hybrid implementations of machine learning engines and signature detection.","subitem_description_type":"Other"}]},"item_2_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"1294","bibliographic_titles":[{"bibliographic_title":"情報処理学会論文誌"}],"bibliographicPageStart":"1287","bibliographicIssueDates":{"bibliographicIssueDate":"2023-09-15","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"9","bibliographicVolumeNumber":"64"}]},"relation_version_is_last":true,"item_2_identifier_registration":{"attribute_name":"ID登録","attribute_value_mlt":[{"subitem_identifier_reg_text":"10.20729/00227599","subitem_identifier_reg_type":"JaLC"}]},"weko_creator_id":"44499"},"created":"2025-01-19T01:26:57.761969+00:00","updated":"2025-01-19T12:03:30.956775+00:00","id":227708}