{"metadata":{"_oai":{"id":"oai:ipsj.ixsq.nii.ac.jp:00239290","sets":["1164:1867:11465:11712"]},"path":["11712"],"owner":"44499","recid":"239290","title":["OpenFlowのフロー統計情報を用いたHTTP Flood検知手法の提案"],"pubdate":{"attribute_name":"公開日","attribute_value":"2024-09-12"},"_buckets":{"deposit":"87c12be3-ef40-4ac8-8055-7d33c1ba1727"},"_deposit":{"id":"239290","pid":{"type":"depid","value":"239290","revision_id":0},"owners":[44499],"status":"published","created_by":44499},"item_title":"OpenFlowのフロー統計情報を用いたHTTP Flood検知手法の提案","author_link":["655751","655750","655753","655749","655754","655752"],"item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"OpenFlowのフロー統計情報を用いたHTTP Flood検知手法の提案"},{"subitem_title":"Proposal for an HTTP Flood attack detection method using flow statistics of OpenFlow","subitem_title_language":"en"}]},"item_type_id":"4","publish_date":"2024-09-12","item_4_text_3":{"attribute_name":"著者所属","attribute_value_mlt":[{"subitem_text_value":"大分大学大学院工学研究科"},{"subitem_text_value":"大分大学理工学部"},{"subitem_text_value":"大分大学学術情報拠点情報基盤センター"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_publisher":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"情報処理学会","subitem_publisher_language":"ja"}]},"publish_status":"0","weko_shared_id":-1,"item_file_price":{"attribute_name":"Billing file","attribute_type":"file","attribute_value_mlt":[{"url":{"url":"https://ipsj.ixsq.nii.ac.jp/record/239290/files/IPSJ-OS24165003.pdf","label":"IPSJ-OS24165003.pdf"},"date":[{"dateType":"Available","dateValue":"2026-09-12"}],"format":"application/pdf","billing":["billing_file"],"filename":"IPSJ-OS24165003.pdf","filesize":[{"value":"5.8 MB"}],"mimetype":"application/pdf","priceinfo":[{"tax":["include_tax"],"price":"660","billingrole":"5"},{"tax":["include_tax"],"price":"330","billingrole":"6"},{"tax":["include_tax"],"price":"0","billingrole":"11"},{"tax":["include_tax"],"price":"0","billingrole":"44"}],"accessrole":"open_date","version_id":"c9032db0-5887-4eec-ad48-0a0b5340fecf","displaytype":"detail","licensetype":"license_note","license_note":"Copyright (c) 2024 by the Information Processing Society of Japan"}]},"item_4_creator_5":{"attribute_name":"著者名","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"木元, 啓太"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"池部, 実"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"吉崎, 弘一"}],"nameIdentifiers":[{}]}]},"item_4_creator_6":{"attribute_name":"著者名(英)","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"Keita, Kimoto","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Minoru, Ikebe","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Koichi, Yoshizaki","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_4_source_id_9":{"attribute_name":"書誌レコードID","attribute_value_mlt":[{"subitem_source_identifier":"AN10444176","subitem_source_identifier_type":"NCID"}]},"item_4_textarea_12":{"attribute_name":"Notice","attribute_value_mlt":[{"subitem_textarea_value":"SIG Technical Reports are nonrefereed and hence may later appear in any journals, conferences, symposia, etc."}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourceuri":"http://purl.org/coar/resource_type/c_18gh","resourcetype":"technical report"}]},"item_4_source_id_11":{"attribute_name":"ISSN","attribute_value_mlt":[{"subitem_source_identifier":"2188-8795","subitem_source_identifier_type":"ISSN"}]},"item_4_description_7":{"attribute_name":"論文抄録","attribute_value_mlt":[{"subitem_description":"マルウェアに感染した IoT デバイスは，ボットとして攻撃者の命令により大量のパケットを送信し，攻撃対象のサービス提供を阻害する DDoS を実行することがある．HTTP Flood は，大量の HTTP リクエストを送信することで Web サーバのサービスを妨害する DDoS の 1 つである．本研究では，SDN (Software Defined Networking) の 1 つである OpenFlow を用いた HTTP Flood の検知手法を提案する．提案手法では HTTP Flood の発生時に HTTP パケット数の増加かつ一定時間パケット数が継続する特徴に着目する．OpenFlow コントローラはフローエントリが保持する統計情報 (受信パケット数) を定期的に取得して，宛先 IP アドレスごとの HTTP パケット数を集計する．前回取得した HTTP パケット数と現在の HTTP パケット数から増加率を求め，閾値と比較し，閾値以上の HTTP パケット数が一定回数以上継続した場合に，宛先 IP アドレスに対するすべての通信を遮断する．OpenFlow ネットワーク上で HTTP パケット数を継続的に増加した 4 パターンのトラフィックを Web サーバに送信し，すべてのパターンで検知・遮断できることを確認した．","subitem_description_type":"Other"}]},"item_4_biblio_info_10":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicPageEnd":"8","bibliographic_titles":[{"bibliographic_title":"研究報告システムソフトウェアとオペレーティング・システム（OS）"}],"bibliographicPageStart":"1","bibliographicIssueDates":{"bibliographicIssueDate":"2024-09-12","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"3","bibliographicVolumeNumber":"2024-OS-165"}]},"relation_version_is_last":true,"weko_creator_id":"44499"},"updated":"2025-01-19T08:20:01.283565+00:00","created":"2025-01-19T01:42:50.982837+00:00","links":{},"id":239290}