Paper Abstract and Keywords |
Presentation |
2009-07-03 13:25
Investigation about Malware Distribution to Websites Takeshi Yagi, Naoto Tanimoto, Masaki Hamada, Mitsutaka Itoh (NTT) ISEC2009-32 SITE2009-24 ICSS2009-46 |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
This paper reports the actual situation of malware distribution to websites by constructing web honeynets, which carries vulnerable web applications. Recently, a large number of websites are used by attackers as hopping sites to attack other websites and user terminals. To make hopping sites, many attackers make victims download malware themselves by using vulnerabilities in web applications. To protect websites from these attacks, conventional technologies filter accesses from attackers by using signatures, which are generated by analyzing vulnerabilities in web applications. However, to improve accuracy of signatures, vulnerabilities in all web applications should be analyzed. In this paper, we investigated characteristics of attacks which can be identified more efficient than access pattern of attackers. Our investigation reveals that destinations of malware download requests works well for detection of attacks. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
security / honeynet / honeypot / malware / RFI / web / / |
Reference Info. |
IEICE Tech. Rep., vol. 109, no. 115, ICSS2009-46, pp. 175-180, July 2009. |
Paper # |
ICSS2009-46 |
Date of Issue |
2009-06-25 (ISEC, SITE, ICSS) |
ISSN |
Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 |
Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) |
Download PDF |
ISEC2009-32 SITE2009-24 ICSS2009-46 |
Conference Information |
Committee |
ISEC IPSJ-CSEC SITE ICSS |
Conference Date |
2009-07-02 - 2009-07-03 |
Place (in Japanese) |
(See Japanese page) |
Place (in English) |
Akita University |
Topics (in Japanese) |
(See Japanese page) |
Topics (in English) |
|
Paper Information |
Registration To |
ICSS |
Conference Code |
2009-07-ISEC-CSEC-SITE-ICSS |
Language |
Japanese |
Title (in Japanese) |
(See Japanese page) |
Sub Title (in Japanese) |
(See Japanese page) |
Title (in English) |
Investigation about Malware Distribution to Websites |
Sub Title (in English) |
|
Keyword(1) |
security |
Keyword(2) |
honeynet |
Keyword(3) |
honeypot |
Keyword(4) |
malware |
Keyword(5) |
RFI |
Keyword(6) |
web |
Keyword(7) |
|
Keyword(8) |
|
1st Author's Name |
Takeshi Yagi |
1st Author's Affiliation |
NIPPON TELEGRAPH AND TELEPHONE CORPORATION (NTT) |
2nd Author's Name |
Naoto Tanimoto |
2nd Author's Affiliation |
NIPPON TELEGRAPH AND TELEPHONE CORPORATION (NTT) |
3rd Author's Name |
Masaki Hamada |
3rd Author's Affiliation |
NIPPON TELEGRAPH AND TELEPHONE CORPORATION (NTT) |
4th Author's Name |
Mitsutaka Itoh |
4th Author's Affiliation |
NIPPON TELEGRAPH AND TELEPHONE CORPORATION (NTT) |
5th Author's Name |
|
5th Author's Affiliation |
() |
6th Author's Name |
|
6th Author's Affiliation |
() |
7th Author's Name |
|
7th Author's Affiliation |
() |
8th Author's Name |
|
8th Author's Affiliation |
() |
9th Author's Name |
|
9th Author's Affiliation |
() |
10th Author's Name |
|
10th Author's Affiliation |
() |
11th Author's Name |
|
11th Author's Affiliation |
() |
12th Author's Name |
|
12th Author's Affiliation |
() |
13th Author's Name |
|
13th Author's Affiliation |
() |
14th Author's Name |
|
14th Author's Affiliation |
() |
15th Author's Name |
|
15th Author's Affiliation |
() |
16th Author's Name |
|
16th Author's Affiliation |
() |
17th Author's Name |
|
17th Author's Affiliation |
() |
18th Author's Name |
|
18th Author's Affiliation |
() |
19th Author's Name |
|
19th Author's Affiliation |
() |
20th Author's Name |
|
20th Author's Affiliation |
() |
Speaker |
Author-1 |
Date Time |
2009-07-03 13:25:00 |
Presentation Time |
25 minutes |
Registration for |
ICSS |
Paper # |
ISEC2009-32, SITE2009-24, ICSS2009-46 |
Volume (vol) |
vol.109 |
Number (no) |
no.113(ISEC), no.114(SITE), no.115(ICSS) |
Page |
pp.175-180 |
#Pages |
6 |
Date of Issue |
2009-06-25 (ISEC, SITE, ICSS) |
|