Home // FUTURE COMPUTING 2017, The Ninth International Conference on Future Computational Technologies and Applications // View article

APT Detection with Host-Based Intrusion Detection System and Intelligent Systems

Authors:
Seong Oun Hwang

Keywords: OSSEC; APT; IOC; HIDS

Abstract:
Recently, Advanced Persistent Threat (APT) attacks have targeted many institutions, such as governments and companies. APT refers to a type of offensive attacks, which have been performed for a long time using unique attack vectors and malware specifically developed for the target organization. Due to its complicated and sophiscated nature, this threat can be very hard to detect compared to other types of attacks. In this paper, we propose a new method to detect APT attacks by profiling user activities based on Indicator of Compromise (IOC) and chasing malware activities.

Pages: 26 to 27

Copyright: Copyright (c) IARIA, 2017

Publication date: February 19, 2017

Published in: conference

ISSN: 2308-3735

ISBN: 978-1-61208-530-2

Location: Athens, Greece

Dates: from February 19, 2017 to February 23, 2017