A Method of Detecting Abnormal Malicious Remote Control Codes using Network Domain Information
DC Field | Value | Language |
---|---|---|
dc.contributor.author | Oh, Hyung-Geun | - |
dc.contributor.author | Seo, Jung-Taek | - |
dc.contributor.author | Lim, Jong In | - |
dc.contributor.author | Moon, Jong-sub | - |
dc.date.accessioned | 2021-09-06T20:14:06Z | - |
dc.date.available | 2021-09-06T20:14:06Z | - |
dc.date.created | 2021-06-18 | - |
dc.date.issued | 2012-05 | - |
dc.identifier.issn | 1343-4500 | - |
dc.identifier.uri | https://scholar.korea.ac.kr/handle/2021.sw.korea/108493 | - |
dc.description.abstract | Since the malicious code used in the latest APT (Advanced Persistent Threat) attacks new, hitherto unknown security, vulnerabilities, it is almost impossible to detect with the conventional pattern-based information security system. Consequently, various targeted attacks such as internal data leakage and system demolition have inflicted great damage, thereby raising the need for a new concept of malicious code detection. This paper proposes a new method of detecting abnormal connections by observing the status of connection of an attack system connected to a target system over the network. This method can detect the connection of new malicious codes very efficiently using only the existing network data, and can intercept the leakage of internal data or the transfer of attack commands. | - |
dc.language | English | - |
dc.language.iso | en | - |
dc.publisher | INT INFORMATION INST | - |
dc.title | A Method of Detecting Abnormal Malicious Remote Control Codes using Network Domain Information | - |
dc.type | Article | - |
dc.contributor.affiliatedAuthor | Lim, Jong In | - |
dc.contributor.affiliatedAuthor | Moon, Jong-sub | - |
dc.identifier.scopusid | 2-s2.0-84863213413 | - |
dc.identifier.wosid | 000305592200031 | - |
dc.identifier.bibliographicCitation | INFORMATION-AN INTERNATIONAL INTERDISCIPLINARY JOURNAL, v.15, no.5, pp.2181 - 2192 | - |
dc.relation.isPartOf | INFORMATION-AN INTERNATIONAL INTERDISCIPLINARY JOURNAL | - |
dc.citation.title | INFORMATION-AN INTERNATIONAL INTERDISCIPLINARY JOURNAL | - |
dc.citation.volume | 15 | - |
dc.citation.number | 5 | - |
dc.citation.startPage | 2181 | - |
dc.citation.endPage | 2192 | - |
dc.type.rims | ART | - |
dc.type.docType | Article | - |
dc.description.journalClass | 1 | - |
dc.description.journalRegisteredClass | scie | - |
dc.description.journalRegisteredClass | scopus | - |
dc.relation.journalResearchArea | Engineering | - |
dc.relation.journalWebOfScienceCategory | Engineering, Multidisciplinary | - |
dc.subject.keywordAuthor | Remote Control Malware | - |
dc.subject.keywordAuthor | Abnormal Malicious Code | - |
dc.subject.keywordAuthor | Domain Name Information | - |
dc.subject.keywordAuthor | Abnormal Network Connection | - |
dc.subject.keywordAuthor | Extrusion Detection | - |
dc.subject.keywordAuthor | Intrusion Detection | - |
Items in ScholarWorks are protected by copyright, with all rights reserved, unless otherwise indicated.
(02841) 서울특별시 성북구 안암로 14502-3290-1114
COPYRIGHT © 2021 Korea University. All Rights Reserved.
Certain data included herein are derived from the © Web of Science of Clarivate Analytics. All rights reserved.
You may not copy or re-distribute this material in whole or in part without the prior written consent of Clarivate Analytics.