A study of agent system model for response to spear-phishing

Abstract

Cyberattacks such as APT (Advanced Persistent Threat) have been increasing with the development of information technology. Spear-phishing, which accounts for more than 90% of APT attacks, has transformed the previous attacks aimed at the masses to attacks that target specific individuals. Instant defense from spear-phishing attacks is impossible because such attacks use diverse techniques. Such attacks are especially difficult to detect and cure with current virus vaccines if they use unknown techniques. Thus, the scale of damage from such attacks may increase. It is more difficult for individuals, who are relatively weak in security management, to avoid social technological attacks than for companies and institutions, which can develop countermeasures. Therefore, in this study, we suggest the hierarchical security system model for end-users by using end-point agent application. The suggested model synthetically uses data encoding, blocking control application, and blocking network access to protect systems; and based on the white list, works on application control, checking of the validity of a digital signature, registry protection, and detection and control of reverse-access functions. © 2016 International Information Institute.