An Automated ACL Generation System using Directory Service Information and Network Traffic Data
-
- HASEGAWA Hirokazu
- Nagoya University
-
- YAMAGUCHI Yukiko
- Nagoya University
-
- SHIMADA Hajime
- Nagoya University
-
- TAKAKURA Hiroki
- National Institute of Informatics
Bibliographic Information
- Other Title
-
- ディレクトリサービス情報とトラフィックデータによるACL自動生成システム
Abstract
Cyber attacks have been sophisticated. Attackers investigate the target carefully and generate dedicated malwares that slip through security measures. Separating network and controlling access between them are hopeful effective measures. It can prevent unintended communication by malwares and make us possible to detect malwares easily. However, it is difficult to construct such separated network due to treating many information about the organization to determine unnecessary communication. We have been proposed a system which constructs separated network with information from directory service and real traffic data. We confirmed the effectiveness of the proposal with improved prototype system and subject experiment.
Journal
-
- 電子情報通信学会論文誌D 情報・システム
-
電子情報通信学会論文誌D 情報・システム J100-D (3), 353-364, 2017-03-01
The Institute of Electronics, Information and Communication Engineers
- Tweet
Details 詳細情報について
-
- CRID
- 1390002212174007168
-
- ISSN
- 18810225
- 18804535
-
- Text Lang
- ja
-
- Data Source
-
- JaLC
-
- Abstract License Flag
- Disallowed