MLDS: Multi-Layer Defense System for Preventing Advanced Persistent Threats
Here we report on the issue of Advanced Persistent Threats (APT), which use malware for the purpose of leaking the data of large corporations and government agencies. APT attacks target systems continuously by utilizing intelligent and complex technologies. To overthrow the elaborate security networ...
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
MDPI AG
2014-12-01
|
| Series: | Symmetry |
| Subjects: | |
| Online Access: | http://www.mdpi.com/2073-8994/6/4/997 |
| _version_ | 1811186386667044864 |
|---|---|
| author | Daesung Moon Hyungjin Im Jae Dong Lee Jong Hyuk Park |
| author_facet | Daesung Moon Hyungjin Im Jae Dong Lee Jong Hyuk Park |
| author_sort | Daesung Moon |
| collection | DOAJ |
| description | Here we report on the issue of Advanced Persistent Threats (APT), which use malware for the purpose of leaking the data of large corporations and government agencies. APT attacks target systems continuously by utilizing intelligent and complex technologies. To overthrow the elaborate security network of target systems, it conducts an attack after undergoing a pre-reconnaissance phase. An APT attack causes financial loss, information leakage, etc. They can easily bypass the antivirus system of a target system. In this paper, we propose a Multi-Layer Defense System (MLDS) that can defend against APT. This system applies a reinforced defense system by collecting and analyzing log information and various information from devices, by installing the agent on the network appliance, server and end-user. It also discusses how to detect an APT attack when one cannot block the initial intrusion while continuing to conduct other activities. Thus, this system is able to minimize the possibility of initial intrusion and damages of the system by promptly responding through rapid detection of an attack when the target system is attacked. |
| first_indexed | 2024-04-11T13:44:38Z |
| format | Article |
| id | doaj.art-eee16ed6648e46bcb4be088a8e47b171 |
| institution | Directory Open Access Journal |
| issn | 2073-8994 |
| language | English |
| last_indexed | 2024-04-11T13:44:38Z |
| publishDate | 2014-12-01 |
| publisher | MDPI AG |
| record_format | Article |
| series | Symmetry |
| spelling | doaj.art-eee16ed6648e46bcb4be088a8e47b1712022-12-22T04:21:08ZengMDPI AGSymmetry2073-89942014-12-0164997101010.3390/sym6040997sym6040997MLDS: Multi-Layer Defense System for Preventing Advanced Persistent ThreatsDaesung Moon0Hyungjin Im1Jae Dong Lee2Jong Hyuk Park3Network Security Research Team, Electronics and Telecommunications Research Institute, Daejeon 305-700, KoreaDepartment of Computer Science and Engineering and Department of Interdisciplinary Bio IT Materials, Seoul National University of Science and Technology, SeoulTech, 172 Gongreung 2-dong, Nowon-gu, Seoul 139-743, KoreaDepartment of Computer Science and Engineering and Department of Interdisciplinary Bio IT Materials, Seoul National University of Science and Technology, SeoulTech, 172 Gongreung 2-dong, Nowon-gu, Seoul 139-743, KoreaDepartment of Computer Science and Engineering and Department of Interdisciplinary Bio IT Materials, Seoul National University of Science and Technology, SeoulTech, 172 Gongreung 2-dong, Nowon-gu, Seoul 139-743, KoreaHere we report on the issue of Advanced Persistent Threats (APT), which use malware for the purpose of leaking the data of large corporations and government agencies. APT attacks target systems continuously by utilizing intelligent and complex technologies. To overthrow the elaborate security network of target systems, it conducts an attack after undergoing a pre-reconnaissance phase. An APT attack causes financial loss, information leakage, etc. They can easily bypass the antivirus system of a target system. In this paper, we propose a Multi-Layer Defense System (MLDS) that can defend against APT. This system applies a reinforced defense system by collecting and analyzing log information and various information from devices, by installing the agent on the network appliance, server and end-user. It also discusses how to detect an APT attack when one cannot block the initial intrusion while continuing to conduct other activities. Thus, this system is able to minimize the possibility of initial intrusion and damages of the system by promptly responding through rapid detection of an attack when the target system is attacked.http://www.mdpi.com/2073-8994/6/4/997APT attackdefense in depthmulti-layer defenseintrusion detection |
| spellingShingle | Daesung Moon Hyungjin Im Jae Dong Lee Jong Hyuk Park MLDS: Multi-Layer Defense System for Preventing Advanced Persistent Threats Symmetry APT attack defense in depth multi-layer defense intrusion detection |
| title | MLDS: Multi-Layer Defense System for Preventing Advanced Persistent Threats |
| title_full | MLDS: Multi-Layer Defense System for Preventing Advanced Persistent Threats |
| title_fullStr | MLDS: Multi-Layer Defense System for Preventing Advanced Persistent Threats |
| title_full_unstemmed | MLDS: Multi-Layer Defense System for Preventing Advanced Persistent Threats |
| title_short | MLDS: Multi-Layer Defense System for Preventing Advanced Persistent Threats |
| title_sort | mlds multi layer defense system for preventing advanced persistent threats |
| topic | APT attack defense in depth multi-layer defense intrusion detection |
| url | http://www.mdpi.com/2073-8994/6/4/997 |
| work_keys_str_mv | AT daesungmoon mldsmultilayerdefensesystemforpreventingadvancedpersistentthreats AT hyungjinim mldsmultilayerdefensesystemforpreventingadvancedpersistentthreats AT jaedonglee mldsmultilayerdefensesystemforpreventingadvancedpersistentthreats AT jonghyukpark mldsmultilayerdefensesystemforpreventingadvancedpersistentthreats |