Invention Grant
- Patent Title: Apparatus and method for attack source traceback
- Patent Title (中): 攻击源追溯的装置和方法
-
Application No.: US14518623Application Date: 2014-10-20
-
Publication No.: US09374382B2Publication Date: 2016-06-21
- Inventor: Min-Ho Han , Jung-Tae Kim , Ik-Kyun Kim , Hyun-Sook Cho
- Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
- Applicant Address: KR Daejeon
- Assignee: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
- Current Assignee: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
- Current Assignee Address: KR Daejeon
- Agency: Rabin & Berdo, P.C.
- Priority: KR10-2013-0144690 20131126
- Main IPC: G06F21/55
- IPC: G06F21/55 ; H04L29/06 ; H04W12/12
Abstract:
An apparatus and a method for an attack source traceback capable of tracing back an attacker, that is, an attack source present behind a command and control (C&C) server in a cyber target attack having non-connectivity over a transmission control protocol (TCP) connection are disclosed. The apparatus for the attack source traceback includes: a server information extracting unit detecting an attack for a system, which is generated via a server to thereby extract information on the server; a traceback agent installing unit installing a traceback agent in the server based on the information on the server; and a traceback unit finding an attack source for the system by analyzing network information of the server obtained by the traceback agent.
Public/Granted literature
- US20150150133A1 APPARATUS AND METHOD FOR ATTACK SOURCE TRACEBACK Public/Granted day:2015-05-28
Information query
