Paper Abstract and Keywords |
Presentation |
2017-07-14 10:15
A Proposal on the Actual State Survey Method of RIG Exploit Kit in User Environments Ichiro Shimada, Toshifumi Oota (KKE), Kouichirou Okada (SecureBrain), Akira Yamada (KDDI Research) ISEC2017-16 SITE2017-8 ICSS2017-15 EMM2017-19 |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
In recent years, web-based cyber attacks, which exploit web browsers and compromise computers, are prevailing. In many cases, a package called Exploit Kit, identifying clients' vulnerabilities and exploiting them to run a malicious code are used. In this paper, we propose a new method to estimate the active period of Exploit Kits, by extracting specific strings in the Kit. We choose RIG Exploit Kit as an example of Exploit Kit and evaluate our proposal on a security software's trace. We confirm that the result fits with the other security reports about RIG Exploit Kit. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
Web-based cyber attack / Drive-by Download / RIG Exploit Kit / Web access log / / / / |
Reference Info. |
IEICE Tech. Rep., vol. 117, no. 127, ICSS2017-15, pp. 33-38, July 2017. |
Paper # |
ICSS2017-15 |
Date of Issue |
2017-07-07 (ISEC, SITE, ICSS, EMM) |
ISSN |
Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 |
Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) |
Download PDF |
ISEC2017-16 SITE2017-8 ICSS2017-15 EMM2017-19 |
Conference Information |
Committee |
SITE EMM ISEC ICSS IPSJ-CSEC IPSJ-SPT |
Conference Date |
2017-07-14 - 2017-07-15 |
Place (in Japanese) |
(See Japanese page) |
Place (in English) |
|
Topics (in Japanese) |
(See Japanese page) |
Topics (in English) |
|
Paper Information |
Registration To |
ICSS |
Conference Code |
2017-07-SITE-EMM-ISEC-ICSS-CSEC-SPT |
Language |
Japanese |
Title (in Japanese) |
(See Japanese page) |
Sub Title (in Japanese) |
(See Japanese page) |
Title (in English) |
A Proposal on the Actual State Survey Method of RIG Exploit Kit in User Environments |
Sub Title (in English) |
|
Keyword(1) |
Web-based cyber attack |
Keyword(2) |
Drive-by Download |
Keyword(3) |
RIG Exploit Kit |
Keyword(4) |
Web access log |
Keyword(5) |
|
Keyword(6) |
|
Keyword(7) |
|
Keyword(8) |
|
1st Author's Name |
Ichiro Shimada |
1st Author's Affiliation |
KOZO KEIKAKU ENGINEERING Inc (KKE) |
2nd Author's Name |
Toshifumi Oota |
2nd Author's Affiliation |
KOZO KEIKAKU ENGINEERING Inc (KKE) |
3rd Author's Name |
Kouichirou Okada |
3rd Author's Affiliation |
SecureBrain Corporation (SecureBrain) |
4th Author's Name |
Akira Yamada |
4th Author's Affiliation |
KDDI Research, Inc. (KDDI Research) |
5th Author's Name |
|
5th Author's Affiliation |
() |
6th Author's Name |
|
6th Author's Affiliation |
() |
7th Author's Name |
|
7th Author's Affiliation |
() |
8th Author's Name |
|
8th Author's Affiliation |
() |
9th Author's Name |
|
9th Author's Affiliation |
() |
10th Author's Name |
|
10th Author's Affiliation |
() |
11th Author's Name |
|
11th Author's Affiliation |
() |
12th Author's Name |
|
12th Author's Affiliation |
() |
13th Author's Name |
|
13th Author's Affiliation |
() |
14th Author's Name |
|
14th Author's Affiliation |
() |
15th Author's Name |
|
15th Author's Affiliation |
() |
16th Author's Name |
|
16th Author's Affiliation |
() |
17th Author's Name |
|
17th Author's Affiliation |
() |
18th Author's Name |
|
18th Author's Affiliation |
() |
19th Author's Name |
|
19th Author's Affiliation |
() |
20th Author's Name |
|
20th Author's Affiliation |
() |
Speaker |
Author-1 |
Date Time |
2017-07-14 10:15:00 |
Presentation Time |
25 minutes |
Registration for |
ICSS |
Paper # |
ISEC2017-16, SITE2017-8, ICSS2017-15, EMM2017-19 |
Volume (vol) |
vol.117 |
Number (no) |
no.125(ISEC), no.126(SITE), no.127(ICSS), no.128(EMM) |
Page |
pp.33-38 |
#Pages |
6 |
Date of Issue |
2017-07-07 (ISEC, SITE, ICSS, EMM) |
|