상세정보
학술대회
Design of Cyber Attack Precursor Symptom Detection Algorithm through System base Behavior Analysis and Memory Monitoring
- 저자
- 정성모, 김종현, Giovanni Cagalaban, 임지훈, 김석수
- 발행일
- 201012
- 출처
- International Conference on Future Generation Communication and Networking (FGCN) 2010 (CCIS 120), v.120, pp.276-283
- 협약과제
- 10MS4800, 전역적 협력기반의 통합보안제어 시스템 개발, 김종현
- 초록
- More recently, botnet-based cyber attacks, including a spam mail or a DDos attack, have sharply increased, which poses a fatal threat to Internet services. At present, antivirus businesses make it top priority to detect malicious code in the shortest time possible (Lv.2), based on the graph showing a relation between spread of malicious code and time, which allows them to detect after malicious code occurs. Despite early detection, however, it is not possible to prevent malicious code from occurring. Thus, we have developed an algorithm that can detect precursor symptoms at Lv.1 to prevent a cyber attack using an evasion method of 'an executing environment aware attack' by analyzing system behaviors and monitoring memory. © 2010 Springer-Verlag Berlin Heidelberg.
- KSP 제안 키워드
- Behavior analysis, Cyber attacks, DDoS attacks, Detection algorithm, Early Detection, Internet service, Malicious code, Memory monitoring, Spam mail, analyzing system