2015 Fiscal Year Final Research Report
Stealthy SSH Dictionary Attack Detection based on Flow Analysis
| Project/Area Number |
25330154
|
|---|
| Research Category |
Grant-in-Aid for Scientific Research (C)
|
| Allocation Type | Multi-year Fund |
|---|
| Section | 一般 |
|---|
| Research Field |
Information security
|
|---|
| Research Institution | Kyushu Institute of Technology |
|---|
Principal Investigator |
YUTAKA NAKAMURA 九州工業大学, 情報科学センター, 准教授 (40346317)
|
|---|
| Project Period (FY) |
2013-04-01 – 2016-03-31
|
| Keywords | ネットワークセキュリティ / 総当たり攻撃 / SSH |
|---|
| Outline of Final Research Achievements |
SSH brute force attack has become more seriously, so administrators are desired to implement its countermeasures. In the traditional ways, the SSH brute force attack has been detected by analyzing access logs and network traffic. However, the former way must check a huge quantity of the logs in all servers, and the latter cannot find victims of the attacks. To solve these problems, we propose SSH brute force attack detection based on the flow features analysis. As the experimental results, we showed to be able to identify the attacks and their victims.
|
| Free Research Field |
ネットワークセキュリティ
|
