Paper Abstract and Keywords |
Presentation |
2018-03-08 09:45
Automatically Collecting User-initiated Web-based Attacks Takashi Koide, Daiki Chiba, Yuta Takata, Mitsuaki Akiyama, Takeshi Yagi, Kunio Hato (NTT) ICSS2017-66 |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
Recently, web content uses social engineering techniques to lure victims into clicking on them, originating malware download attacks and online scam.To take countermeasures against these web-based social engineering (SE) attacks, a passive approach that reconstructs the sequence of attack events from network traffic and a forensic system that supports manual browsing have been proposed.However, they have limited ability to collect SE attacks due to their observation range and analysts' skills.In this paper, we propose a browser automation system for collecting SE attacks by simulating a user behavior of web browsing and automatically detecting web elements that lure users to interact with them.Starting from initial 7,798 URLs gathered from a search engine and social media, our proposed system crawled 129,806 URLs and identified 191 malware downloads and 382 malicious domain names.Our experiments demonstrate that our system enables us to effectively collect real-world SE attacks. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
Social engineering attack / Trick element / Browser automation / / / / / |
Reference Info. |
IEICE Tech. Rep., vol. 117, no. 481, ICSS2017-66, pp. 91-96, March 2018. |
Paper # |
ICSS2017-66 |
Date of Issue |
2018-02-28 (ICSS) |
ISSN |
Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 |
Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) |
Download PDF |
ICSS2017-66 |
Conference Information |
Committee |
ICSS IPSJ-SPT |
Conference Date |
2018-03-07 - 2018-03-08 |
Place (in Japanese) |
(See Japanese page) |
Place (in English) |
Okinawa Hokubu Koyou Nouryoku Kaihatsu Sougou Center |
Topics (in Japanese) |
(See Japanese page) |
Topics (in English) |
Security, Trust, etc. |
Paper Information |
Registration To |
ICSS |
Conference Code |
2018-03-ICSS-SPT |
Language |
Japanese |
Title (in Japanese) |
(See Japanese page) |
Sub Title (in Japanese) |
(See Japanese page) |
Title (in English) |
Automatically Collecting User-initiated Web-based Attacks |
Sub Title (in English) |
|
Keyword(1) |
Social engineering attack |
Keyword(2) |
Trick element |
Keyword(3) |
Browser automation |
Keyword(4) |
|
Keyword(5) |
|
Keyword(6) |
|
Keyword(7) |
|
Keyword(8) |
|
1st Author's Name |
Takashi Koide |
1st Author's Affiliation |
NTT Secure Platform Laboratories (NTT) |
2nd Author's Name |
Daiki Chiba |
2nd Author's Affiliation |
NTT Secure Platform Laboratories (NTT) |
3rd Author's Name |
Yuta Takata |
3rd Author's Affiliation |
NTT Secure Platform Laboratories (NTT) |
4th Author's Name |
Mitsuaki Akiyama |
4th Author's Affiliation |
NTT Secure Platform Laboratories (NTT) |
5th Author's Name |
Takeshi Yagi |
5th Author's Affiliation |
NTT Secure Platform Laboratories (NTT) |
6th Author's Name |
Kunio Hato |
6th Author's Affiliation |
NTT Secure Platform Laboratories (NTT) |
7th Author's Name |
|
7th Author's Affiliation |
() |
8th Author's Name |
|
8th Author's Affiliation |
() |
9th Author's Name |
|
9th Author's Affiliation |
() |
10th Author's Name |
|
10th Author's Affiliation |
() |
11th Author's Name |
|
11th Author's Affiliation |
() |
12th Author's Name |
|
12th Author's Affiliation |
() |
13th Author's Name |
|
13th Author's Affiliation |
() |
14th Author's Name |
|
14th Author's Affiliation |
() |
15th Author's Name |
|
15th Author's Affiliation |
() |
16th Author's Name |
|
16th Author's Affiliation |
() |
17th Author's Name |
|
17th Author's Affiliation |
() |
18th Author's Name |
|
18th Author's Affiliation |
() |
19th Author's Name |
|
19th Author's Affiliation |
() |
20th Author's Name |
|
20th Author's Affiliation |
() |
Speaker |
Author-1 |
Date Time |
2018-03-08 09:45:00 |
Presentation Time |
25 minutes |
Registration for |
ICSS |
Paper # |
ICSS2017-66 |
Volume (vol) |
vol.117 |
Number (no) |
no.481 |
Page |
pp.91-96 |
#Pages |
6 |
Date of Issue |
2018-02-28 (ICSS) |
|