| 进阶持续性渗透攻击的特征分析研究 |
| |
| 引用本文: | 黄达理,薛质.进阶持续性渗透攻击的特征分析研究[J].信息安全与通信保密,2012(5):87-89. |
| |
| 作者姓名: | 黄达理 薛质 |
| |
| 作者单位: | 上海交通大学信息安全工程学院网络攻防与测评实验室,上海,200240 |
| |
| 摘 要: | 进阶持续性渗透攻击是一类针对特定组织或者目标的一系列攻击行为的总称。这种攻击具有渗透行动上的复杂性和攻击手段上的多元性。通过对于进阶持续性渗透攻击的流程分析发现:进阶持续性渗透攻击在发展过程中具有长期性和阶段性,其中攻击行为在静态和变化态中交替转换;另一方面,进阶持续性渗透的一系列攻击在使用攻击方法上同时使用现有的多种手段,具有非单一性和间接性,使得受害方难以发现并且单一防范工作难以奏效。
|
| 关 键 词: | 进阶持续性渗透攻击 攻击流程 攻击特征 |
Study and Analysis Signatures of Advanced Persistent Threat |
| |
| HUANG Da-li,XUE Zhi.Study and Analysis Signatures of Advanced Persistent Threat[J].China Information Security,2012(5):87-89. |
| |
| Authors: | HUANG Da-li XUE Zhi |
| |
| Affiliation: | (School of Information Security, Shanghai Jiaotong University, Shanghai 200240, China) |
| |
| Abstract: | APT(Advanced Persistent Threat) is a generic term for describing a serial of cyber attacks, and it aims at specific targets or designated organizations. This kind of new threat is far more complicated in the penetration and diversified in the means. Analysis on advanced persistent threat indicates that APT is a long-term threat with different stages, and appears alternately in stable stage or in unstable stage. Moreover, the network attack contains various approaches, thus making it hard to be detected and defended. |
| |
| Keywords: | advanced persistent threat attack process attack feature |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
