並列摘要
Nowadays, development of network influences and changes our life a lot. People can almost do everything through the network, and this is what we should be aware of. The availability and anonymity of network are convenient to normal users, but also benefit attackers/hackers too. Our research focus on the time and space distribution method that the malicious flows do to avoid detection. Most of the current research focus on single flow/IP, but actually the relationship between flow/IP in time and space dimension are significant. Using suspicious list, blacklist, and malicious traffic behavior with time traceback and space distributed method, we can effectively and efficiently figure out potential inner malicious device.
延伸閱讀
- 林志鴻、楊中皇(2011)。用於網路鑑識分析之惡意程式搜集系統設計與實作。載於中華民國資訊安全學會(主編),全國資訊安全會議(頁191-198)。中華民國資訊安全學會。https://doi.org/10.29615/CISC.201105.0191
- Huang, M. C. (2010). 惡意程式可疑檔案關聯建立與辨識之即時系統設計與實作 [master's thesis, National Taiwan University]. Airiti Library. https://doi.org/10.6342/NTU.2010.10533
- 郭振忠、林季偉、姚書涵、楊竹星(2016)。設計與實作基於埠號監控的殭屍網路惡意程式偵測框架。載於國立東華大學(主編),TANET2016 臺灣網際網路研討會(頁1059-1064-190)。國立東華大學。https://doi.org/10.6679/TANET.2016.190
- 吳昌桓(2009)。一個基於監測網路通訊協定執行行為的入侵偵測系統〔碩士論文,國立臺灣大學〕。華藝線上圖書館。https://doi.org/10.6342/NTU.2009.03331
- 侯雍聰、陳嘉玫(2011)。以異常行為為基礎之即時惡意網頁偵測之研究。電子商務學報,13(1),117-134。https://doi.org/10.6188/JEB.2010.12(4).02