{"created":"2023-05-15T12:17:03.445220+00:00","id":646,"links":{},"metadata":{"_buckets":{"deposit":"d339762a-d85c-49f7-8e9f-91f0b77bfdbc"},"_deposit":{"created_by":3,"id":"646","owners":[3],"pid":{"revision_id":0,"type":"depid","value":"646"},"status":"published"},"_oai":{"id":"oai:tuis.repo.nii.ac.jp:00000646","sets":["1:4:200:204"]},"author_link":["2886","2887","2888","2889"],"control_number":"646","item_1701760134620":{"attribute_name":"出版者","attribute_value_mlt":[{"subitem_publisher":"東京情報大学","subitem_publisher_language":"ja"}]},"item_5_biblio_info_12":{"attribute_name":"書誌情報","attribute_value_mlt":[{"bibliographicIssueDates":{"bibliographicIssueDate":"2022-03-25","bibliographicIssueDateType":"Issued"},"bibliographicIssueNumber":"2","bibliographicPageEnd":"33","bibliographicPageStart":"21","bibliographicVolumeNumber":"25","bibliographic_titles":[{"bibliographic_title":"東京情報大学研究論集","bibliographic_titleLang":"ja"}]}]},"item_5_description_10":{"attribute_name":"抄録(日)","attribute_value_mlt":[{"subitem_description":"DRDoS攻撃のうちDNSamp攻撃では，リフレクターと呼ばれる踏み台サーバによってデータ量が大幅に増幅され，標的サーバやそのネットワークに負荷をかける．本研究では，増幅発生前の不正クエリの段階で攻撃パケットを遮断することが可能な，ISPが実装することを想定したシステムを開発した．本システムでは，プロバイダネットワークと利用者の境界に同じ機能を持つ機器を設置する．これらの機器の中で，リフレクター近傍の機器ではDNSクエリの増加を検知し，フィルタリングを行う．しかし，これにより標的サーバからリフレクターへの正規クエリを遮断する可能性がある．そのため，標的サーバ近傍の機器で正規通信に対してポート番号の変換を行うことにより，リフレクター近傍の機器での攻撃通信と正規通信の識別を可能とした．これにより，通信増加が正規クエリであった場合には通信を阻害することなく，DNSamp攻撃を約1.2秒程度で回避することができた．","subitem_description_language":"ja","subitem_description_type":"Other"}]},"item_5_description_11":{"attribute_name":"抄録(英)","attribute_value_mlt":[{"subitem_description":"The DNSamp attack, a DRDoS attack type, amplifies the amount of data via steppingstone servers \nnamed“reflectors”and attacks target servers and their networks. In this study, we developed an attack \nprevention system that blocks malicious queries before amplification, which should be implemented in ISPs. This system consists of several machines with the same function, which are located at borders between ISP and user network. Among these servers, the machines located at the reflector neighborhoods detect and filter increasing DNS queries. However, these machines may block harmless queries to reflectors from victim servers through this filtering action. To avoid this, machines at victim neighborhoods convert the destination port number to distinguish between malicious traffic and harmless traffic. Therefore, we could avoid DNSamp attack in approximately 1.2 s, without blocking harmless packets even if they are transmitted rapidly.","subitem_description_language":"en","subitem_description_type":"Other"}]},"item_5_description_15":{"attribute_name":"表示順","attribute_value_mlt":[{"subitem_description":"1","subitem_description_type":"Other"}]},"item_5_identifier_registration":{"attribute_name":"ID登録","attribute_value_mlt":[{"subitem_identifier_reg_text":"10.15029/00000635","subitem_identifier_reg_type":"JaLC"}]},"item_5_rights_18":{"attribute_name":"ライセンス","attribute_value_mlt":[{"subitem_rights":"TUIS"}]},"item_5_source_id_1":{"attribute_name":"雑誌書誌ID","attribute_value_mlt":[{"subitem_source_identifier":"AA11155514","subitem_source_identifier_type":"NCID"}]},"item_5_text_6":{"attribute_name":"著者所属(日)","attribute_value_mlt":[{"subitem_text_language":"ja","subitem_text_value":"東京情報大学総合情報学部総合情報学科"},{"subitem_text_language":"ja","subitem_text_value":"東京情報大学総合情報学部"}]},"item_creator":{"attribute_name":"著者","attribute_type":"creator","attribute_value_mlt":[{"creatorNames":[{"creatorName":"矢板 , 祐樹","creatorNameLang":"ja"},{"creatorName":"ヤイタ, ユウキ","creatorNameLang":"ja-Kana"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"森口, 一郎","creatorNameLang":"ja"},{"creatorName":"モリグチ, イチロウ","creatorNameLang":"ja-Kana"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Yaita, Yuki","creatorNameLang":"en"}],"nameIdentifiers":[{}]},{"creatorNames":[{"creatorName":"Moriguchi, Ichirou","creatorNameLang":"en"}],"nameIdentifiers":[{}]}]},"item_files":{"attribute_name":"ファイル情報","attribute_type":"file","attribute_value_mlt":[{"accessrole":"open_date","date":[{"dateType":"Available","dateValue":"2022-03-25"}],"displaytype":"detail","filename":"r25-2-1.pdf","filesize":[{"value":"1.5 MB"}],"format":"application/pdf","license_note":"TUIS","licensetype":"license_note","mimetype":"application/pdf","url":{"label":"r25-2-1.pdf","url":"https://tuis.repo.nii.ac.jp/record/646/files/r25-2-1.pdf"},"version_id":"24128667-8e16-44c7-8b96-4a3195f056e2"}]},"item_keyword":{"attribute_name":"キーワード","attribute_value_mlt":[{"subitem_subject":"DRDoS攻撃","subitem_subject_language":"ja","subitem_subject_scheme":"Other"},{"subitem_subject":"DNSamp攻撃","subitem_subject_language":"ja","subitem_subject_scheme":"Other"},{"subitem_subject":"ISP","subitem_subject_language":"ja","subitem_subject_scheme":"Other"},{"subitem_subject":"オープンDNSリゾルバ","subitem_subject_language":"ja","subitem_subject_scheme":"Other"},{"subitem_subject":"DRDoS attack","subitem_subject_language":"en","subitem_subject_scheme":"Other"},{"subitem_subject":"DNSamp attack","subitem_subject_language":"en","subitem_subject_scheme":"Other"},{"subitem_subject":"ISP","subitem_subject_language":"en","subitem_subject_scheme":"Other"},{"subitem_subject":"open DNS resolver","subitem_subject_language":"en","subitem_subject_scheme":"Other"}]},"item_language":{"attribute_name":"言語","attribute_value_mlt":[{"subitem_language":"jpn"}]},"item_resource_type":{"attribute_name":"資源タイプ","attribute_value_mlt":[{"resourcetype":"departmental bulletin paper","resourceuri":"http://purl.org/coar/resource_type/c_6501"}]},"item_title":"リフレクター近傍リクエストフィルタリングによるDRDoS攻撃回避","item_titles":{"attribute_name":"タイトル","attribute_value_mlt":[{"subitem_title":"リフレクター近傍リクエストフィルタリングによるDRDoS攻撃回避","subitem_title_language":"ja"},{"subitem_title":"A DRDoS Attack Avoidance Method Based on the Request Filtering of a Reflector Neighborhood","subitem_title_language":"en"}]},"item_type_id":"5","owner":"3","path":["204"],"pubdate":{"attribute_name":"PubDate","attribute_value":"2022-03-31"},"publish_date":"2022-03-31","publish_status":"0","recid":"646","relation_version_is_last":true,"title":["リフレクター近傍リクエストフィルタリングによるDRDoS攻撃回避"],"weko_creator_id":"3","weko_shared_id":-1},"updated":"2023-12-21T01:54:15.230343+00:00"}