TIIS (Çѱ¹ÀÎÅͳÝÁ¤º¸ÇÐȸ)
| ÇѱÛÁ¦¸ñ(Korean Title) |
On-line Shared Platform Evaluation Framework for Advanced Persistent Threats |
| ¿µ¹®Á¦¸ñ(English Title) |
On-line Shared Platform Evaluation Framework for Advanced Persistent Threats |
| ÀúÀÚ(Author) |
Dongsik Sohn
Taejin Lee
Jin Kwak
|
| ¿ø¹®¼ö·Ïó(Citation) |
VOL 13 NO. 05 PP. 2610 ~ 2628 (2019. 05) |
Çѱ۳»¿ë
(Korean Abstract) |
|
¿µ¹®³»¿ë
(English Abstract) |
Advanced persistent threats (APTs) are constant attacks of specific targets by hackers using intelligent methods. All current internal infrastructures are constantly subject to APT attacks created by external and unknown malware. Therefore, information security officers require a framework that can assess whether information security systems are capable of detecting and blocking APT attacks. Furthermore, an on-line evaluation of information security systems is required to cope with various malicious code attacks. A regular evaluation of the information security system is thus essential. In this paper, we propose a dynamic updated evaluation framework to improve the detection rate of internal information systems for malware that is unknown to most (over 60 %) existing static information security system evaluation methodologies using non-updated unknown malware.
|
| Å°¿öµå(Keyword) |
APT Evaluation
APT detection
Intrusion detection
APT evaluation framework
Detection Performance
|
| ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|
