Browse > Article
http://dx.doi.org/10.5573/ieek.2013.50.9.092

Next Generation Convergence Security Framework for Advanced Persistent Threat  

Lee, Moongoo (School of Mobile &Environmental Engineering, Dept. of Internet Information, Kimpo College)
Bae, Chunsock (Cloud Group, Global Infra Service Unit, LG CNS Co.)
Publication Information
Journal of the Institute of Electronics and Information Engineers / v.50, no.9, 2013 , pp. 92-99 More about this Journal
Abstract
As a recent cyber attack has a characteristic that is intellectual, advanced, and complicated attack against precise purpose and specified object, it becomes extremely hard to recognize or respond when accidents happen. Since a scale of damage is very large, a corresponding system about this situation is urgent in national aspect. Existing data center or integration security framework of computer lab is evaluated to be a behind system when it corresponds to cyber attack. Therefore, this study suggests a better sophisticated next generation convergence security framework in order to prevent from attacks based on advanced persistent threat. Suggested next generation convergence security framework is designed to have preemptive responses possibly against APT attack consisting of five hierarchical steps in domain security layer, domain connection layer, action visibility layer, action control layer and convergence correspondence layer. In domain connection layer suggests security instruction and direction in domain of administration, physical and technical security. Domain security layer have consistency of status information among security domain. A visibility layer of Intellectual attack action consists of data gathering, comparison, decision, lifespan cycle. Action visibility layer is a layer to control visibility action. Lastly, convergence correspond layer suggests a corresponding system of before and after APT attack. An introduction of suggested next generation convergence security framework will execute a better improved security control about continuous, intellectual security threat.
Keywords
Advanced Persistent Threat; Action Visibility; Action Control; Convergence Correspondence Layer;
Citations & Related Records
Times Cited By KSCI : 3  (Citation Analysis)
연도 인용수 순위
1 Strategies for Dealing With Advanced Targeted Threats, GARTNER Aug. 2011.
2 http://isis.kisa.or.kr/ 2011. 2012, 2013.
3 Safezone ID Provisioning, LG CNS, http://safezone.lgcns.com/solu/solu_idpro_intro.asp, Mar. 2013.
4 Blue Coat Labs Report: Advanced Persistent Threats, BlueCoat, BlueCoat, 2011.
5 김현성, "인지무선네트워크를 위한 회전자 기반 적응형 보안프레임워크 설계", 대한전자공학회, 전자공학회논문지 제 50권 제 5호, 2013.5, 165-171 (7pages)   과학기술학회마을   DOI   ScienceOn
6 최종욱, 김인기, 유지연, 조주원, "APT공격에 대한 E-DRM기반의 효율적 대응방안", 한국지역정보화학회, 한국지역정보화학회지 15(3), 2012.9, 29-54 (26 pages)
7 한성백, 홍성권, "APT공격에 대한 금융권에서의 대응방안", 한국정보보호학회, 정보보호학회지 23(1), 2013.2, 44-53 (10 pages)   과학기술학회마을
8 최대선, 김승현, 진승헌, 이윤호, "스마트폰 환경에서 응용 보안을 위한 플랫폼 독립적인 보안 프레임워크" 한국정보과학회, 정보과학회논문지 : 정보통신 39(1), 2012.2, 102-107 (6 pages)   과학기술학회마을