:::

詳目顯示

回上一頁
題名:近年網路攻擊與中國駭客活動
書刊名:前瞻科技與管理
作者:陳立函葉怡群陳世仁許富皓
作者(外文):Chen, Li-hanYeh, Yi-chunChen, Shih-jenHsu, Fu-hau
出版日期:2010
卷期:特刊
頁次:頁137-147
主題關鍵詞:大陸駭客資訊安全網路攻擊網軍駭客China hackerInformation securityCyber attackCyber armyHacker
原始連結:連回原系統網址new window
相關次數:
  • 被引用次數被引用次數:期刊(1) 博士論文(0) 專書(0) 專書論文(0)
  • 排除自我引用排除自我引用:1
  • 共同引用共同引用:0
  • 點閱點閱:84
在本篇文章中我們將介紹目前最常見的網路攻擊型態與中國駭客的攻擊活動。隨著電腦的普及、網路的發達、與駭客技術的提昇,資訊安全已經成一越來越不可輕忽的問題,因此OWASP(Open Web Application Security Project)組織每三年就會發表一次Web應用程式安全威脅的前十名用以提醒世人網路攻擊的危險,而日前公佈的2010 Release版本中,Injection類型攻擊已經取代Cross-Site Scripting攻擊成為第一名的網路攻擊型態,但Cross-Site Scripting攻擊較為容易發動的特性讓它還是高掛排行榜第二名,前兩名的網路攻擊型態顯示Web應用程式需要更徹底與更可靠的輸入驗證機制,而新上榜的Security Misconfiguration和Unvalidated Redirects and Forwards 亦是嚴重的資安問題。隨著攻擊技術的提昇,對岸對於台灣網站的攻擊亦更加頻繁,從年初的教育部品德教育網被竄改首頁,一直到最近知名拍賣網站在愚人節遭駭,甚至中國Google也遭到中共駭客入侵,固然上述的攻擊有不同的來源與動機,但中共網路國防戰實力的提昇卻是一不容忽視的問題。
Due to the popularity of computers and networks and the rapid progress of attacker skills, computer and network security become a more and more important issue. In the latest 2010 top 10 version, injection style attacks, instead of Cross-Site Scripting (XSS), become the number one threat to web applications. However, due to the easiness to launch a XSS attack, Cross-Site Scripting is still in the second place among various dangerous web threats. The report shows more thorough and reliable input confirmation mechanisms should be provided to web-related programs. Besides, new attack types, like Security Misconfiguration and Unvalidated Redirects and Forwards, are also serious threats to web applications. Along with the development of attack skills, attacks originating from the other side of Taiwan Strait also increase. These attacks either change the appearance of compromised web servers or inject vicious code into web pages to attack web browsers displaying them. Even though these attacks may have different origins and motivation, they clearly show the serious threats creating by the Chinese Net-force.
會議論文
1.Strone-Gross, B.、Cova, M.、Lorenzo, C.、Gilbert, B.、Szydlowski, M.、Kemmerer, R.、Kruegel, C.、Vigna, G.(2009)。Your Botnet is My Botnet: Analysis of a Botnet Takeover。New York, US:Association for Computing Mechinary。635-647。  new window
其他
1.(2010)。台灣駭客年會,http://www.hitcon.org, 20101020。  延伸查詢new window
2.(20100127)。資安事件紀錄,http://www.itis.tw/malicious_url/7928, 20101020。  new window
3.(20091118)。網路軍備競賽儼然成型,全球網路冷戰來臨,http://www.epochtimes.com/b5/9/11/18/n2726288.htm, 20101020。  延伸查詢new window
4.(20100927)。Action Script,http://zh.wikipedia.org/zhhk/ActionScript, 20101020。  new window
5.(20100915)。Adobe Flash,http://zh.wikipedia.org/zhtw/Adobe_Flash, 20101020。  new window
6.(20090714)。Adobe Reader,http://get.adobe.com/tw/reader, 20101020。  new window
7.(20100118)。Windows 中自動播放功能的更新,http://support.microsoft.com/kb/971029/zh-tw, 20101020。  延伸查詢new window
8.李柏逸(20100209)。2010 OWASPTop10:弱點+Google Search 大批量攻擊成主流,http://informationsecurity.com.tw/article/article_detail.aspx?aid=5587, 20101020。  new window
9.教育部(2007)。教育部品德教育資源網,http://ce.naer.edu.tw, 20101020。  延伸查詢new window
10.辜樹仁(20100830)。大陸駭客,台灣練兵,http://mag.chinatimes.com/mag-cnt.aspx?artid=4996&pag3, 20101020。  延伸查詢new window
11.蔡宜秀(20100827)。總統府網站遭駭?專家:網頁有瑕疵,http://www.zdnet.com.tw/news/software/0.2000085678.20140479.00.htm, 20101020。  延伸查詢new window
12.(2010)。IBM X-Force Threat Reports,http://www-935.ibm.com/services/us/iss/ xforce/trendreports, 20101020。  new window
13.(20101020)。OWASP Top 10 2010,http://www.owasp.org/index. php/Category:OWASP_Top_Ten_Project, 20101020。  new window
14.(20101021)。OWASP: Open Web Application Security Project,http://www.owasp.org/index.php/Main_ Page, 20101021。  new window
15.(20100108)。Windows Live Messenger,http://explore.live.com/ windows-live-messenger?os=other, 20101021。  new window
16.Kaspersky Lab(20071030)。關於日前KAVO 的病毒,奕瑞科技對 於提供此病毒的說明與解決方案,http://www. kaspersky.com.tw/KL-AboutUs/News2007/10n/1030.htm, 20101020。  延伸查詢new window
17.McAfee Labs(2010)。McAfee 2010 Threat Predictions,www.mcafee.com/ us/local_content/white_papers/7985rpt_ l abs_thr e a t_pr edi c t_1209_v2.pdf, 20101020。  new window
 
 
 
 
第一頁 上一頁 下一頁 最後一頁 top
:::
無相關博士論文
 
無相關書籍
 
無相關著作
 
QR Code
QRCODE