论文信息 - Toward an artificial immune server against cyber attacks

Toward an artificial immune server against cyber attacks

This paper proposes a novel framework for an artificial immune server with both innate and adaptive immune functions. The innate immune function detects cyber attacks on a known or unknown vulnerability. Upon detecting a cyber attack, the innate immune function creates a new process of the server application and terminates the compromised process. The adaptive immune function learns the requests with exploit code detected by the innate immune function. The adaptive immune function enables the server application to maintain its own service without terminating the server application after the innate immune function recognizes the attack. Performance tests of a prototype system implemented on a vulnerable web server showed that this prototype system was able to maintain the web service during all attacks except the first.

Takeshi Okamoto | Mitsunobu Tarao

[1] Takeshi Okamoto,et al. A cyber attack-resilient server inspired by biological diversity , 2016, Artificial Life and Robotics.

[2] Hovav Shacham,et al. The geometry of innocent flesh on the bone: return-into-libc without function calls (on the x86) , 2007, CCS '07.

[3] 田端利宏,et al. Network and Distributed System Security Symposiumにおける研究動向の調査 , 2004 .

[4] Jesse D. Kornblum. Identifying almost identical files using context triggered piecewise hashing , 2006, Digit. Investig..

[5] Felix C. Freiling,et al. Toward Automated Dynamic Malware Analysis Using CWSandbox , 2007, IEEE Secur. Priv..

[6] Robert H. Deng,et al. ROPecker: A Generic and Practical Approach For Defending Against ROP Attacks , 2014, NDSS.

[7] Dan S. Wallach,et al. Hack-a-vote: Security issues with electronic voting systems , 2004, IEEE Security & Privacy Magazine.

[8] Jeffrey O. Kephart,et al. A biologically inspired immune system for computers , 1994 .

[9] Stephanie Forrest,et al. A sense of self for Unix processes , 1996, Proceedings 1996 IEEE Symposium on Security and Privacy.

[10] Takeshi Okamoto,et al. SecondDEP: Resilient Computing that Prevents Shellcode Execution in Cyber-Attacks , 2015, KES.