![1. ?????
?? ?? ???? ?????
????¡
[4]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-4-320.jpg)
![1. ?????
?? ???? ?? ???? ? ???
???, ???, ??? ?? ??¡
??? ?? ??? ?? ??¡
?? ???, ??????? ???
????? ? ?? ?? ??
?? ??? (??? ??? ????)
??? ? ?? ??????¡
[5]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-5-320.jpg)
![1. ?????
? ? ?? ??????
??? ???? ??? ??
[6]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-6-320.jpg)
![1. ?????
??? ?? ?????¡
?? ??? ? ?? ?????¡
[7]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-7-320.jpg)
![1. ?????
? ???? ??
(Clifford stoll, 1951~)
? ????
? ¡®???? ?¡¯ ??
[8]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-8-320.jpg)
![1. ?????
1980?? ??? ?????¡
??? ???? 1? ?? ???
??? ?? ???? ??¡
? 1??? ?????
[9]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-9-320.jpg)
![1. ?????
Private Networks
Mobile Networks
Public Networks
??/?? ??, ??? ?
?? ??
?????? ?? ???
[10]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-10-320.jpg)
![1. ?????
???? ??, ??? ??? ???
?? ???..
??? ???? ?? ????
??? ???¡
[11]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-11-320.jpg)
![1. ?????
? ??? ??
(Dorothy Denning, 1945~)
? IDS ?? ?? ??(1986)
¡ú ?? ??
¡ú ??? ??
[12]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-12-320.jpg)
![1. ?????
? ?? ??
(Martin Roesch, 1951~)
? Snort ??(1998)
? IDS ???
[13]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-13-320.jpg)
![1. ?????
IDS(Intrusion Detection System)
? ?? ???????
[14]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-14-320.jpg)
![1. ?????
?? ??????
???!
[15]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-15-320.jpg)
![1. ?????
GET /index.html HTTP/1.1
(index.html ? ?????)
HTTP/1.1 200OK
(??!)
[16]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-16-320.jpg)
![1. ?????
??? ?? ???? ?????
??? ????¡
?? ?? ??? ?? ?????
??? ??? ? ??¡
??? ???? ?????
???? ????¡
[17]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-17-320.jpg)
![1. ?????
?? ???
????
?? ???
????
?????? ??? ?? ??
?????? ??? ?? ???
[18]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-18-320.jpg)
![1. ?????
IDS
? ?? ?? ??
? ??
IPS
? ?? ?? ??
? ??/??
????
? ???? ?? ??
? ??/??
[19]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-19-320.jpg)
![1. ?????
IDS ?? ???? ???? ????
??? ??????¡
??? ?? ?? ???
IDS? ????¡
??? ???? ???? ?????
? ??? ???¡
[20]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-20-320.jpg)
![1. ?????
????? ???? ?? ????
????? ???? ?
[21]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-21-320.jpg)
![1. ?????
??? ??? ????
hacked by Anonymous
hack ?? ???
hack ??? ??
[22]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-22-320.jpg)
![1. ?????
??? ??? ?? ????
?
?????? ??
?? ?? ???
?? ???
[23]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-23-320.jpg)
![1. ?????
?? ??! ?? ???
[24]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-24-320.jpg)
![1. ?????
7??? ?? ????? ??
??? ??? ?? ???¡
?? ??? ??¡
???? ?? ?? ??¡
[25]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-25-320.jpg)
![1. ?????
[26]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-26-320.jpg)
![1. ?????
[27]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-27-320.jpg)
![1. ?????
??? ????, ??? ???
????? ????? ??? ? ??¡
?? ?????? ??? ???
??? ??? ?? ? ??¡
????
[28]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-28-320.jpg)
![1. ?????
??? ????
?? ???
[29]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-29-320.jpg)
![1. ?????
??? ????
9?? ??? ??~?
[30]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-30-320.jpg)
![2. ?????
????
????
DATA
BIG DATA
1?? ??
??? ??
[32]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-32-320.jpg)
![2. ?????
???? ??? ?? ??? ???,
?? ??? ?? ?? ???!
[33]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-33-320.jpg)
![2. ?????
?? ??? ???, ??? ?? ?? ???
[34]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-34-320.jpg)
![1. ?????
??? ????? ???¡
??? ??,
??? ???? ????¡
??????
[35]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-35-320.jpg)
![2. ?????
?? ?????
??? ????
?? ?????
?? ????
?? ??? ?????
?? ??? ????? ????...
[36]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-36-320.jpg)
![2. ?????
¡°???? ?? ??? ????? ???
???, ???? ??? ?? ???
??? ??? ??? ? ?? ??.¡±
¡°??? ??? ?? ??? ???? ???
???? ?? ??? ??? ?? ???.
?? ???? ??? ??? ?? ??.¡±
http://www.zdnet.co.kr/news/news_view.asp?artice_id=20130514083136
[37]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-37-320.jpg)
![2. ?????
??? ???? ???
??? ????
[38]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-38-320.jpg)
![2. ?????
????
?? ???
????
????
?? ???
???? ?????
[39]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-39-320.jpg)
![2. ?????
??? ??
?
? ?? ???,
??? ??? ??
?? ??
????
[40]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-40-320.jpg)
![1. ?????
??? ?? ???? ??? ????¡
? ? ??? ?????
??? ???? ??¡
?? ?? ?? ?!
[41]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-41-320.jpg)
![2. ?????
???
???
+ ???? = ????
=
????
????
????
+ ???? ? ????
????
[42]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-42-320.jpg)
![1. ?????
????? ???
?????? ??? ????¡
????? ??????
????? ???? ??? ? ????
[43]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-43-320.jpg)
![2. ?????
GET /index.php?id=5677
HTTP/1.1 200 OK
GET /index.php?id=5677%20and%201=1
HTTP/1.1 200 OK
[44]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-44-320.jpg)
![1. ?????
??? ?? ????? ??
??? ??? ?????
???? ??? ?? ???
?? ??? ??? ?? ?? ?? ??¡
[45]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-45-320.jpg)
![1. ?????
??? ???? ???
????? ?? ????¡
????
??? ??? ? ????? ?????¡
??? ????, ????¡??????
[46]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-46-320.jpg)
![2. ?????
?????????(ÐÞÉíýR¼ÒÖ·ø ƽÌìÏÂ)
? ?? ??? ?????
????? ??? ?? ?????
[47]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-47-320.jpg)
![3. ???? ??
?? ? ?????
tcp syn flooding
2001?
3GB
udp port scan
2011?
????
?? ???
70GB
(???????)
slammer worm
[49]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-49-320.jpg)
![3. ???? ??
??? ???? ??? ?? ???¡
?? ??? ???!
????¡??? ?? 1??? 11~15TB? ???? ?
??? ???? ?? ? ???? ???? ???? ?
?? ?? ??? ?? ??? ????.
1TB? ? 1? ?? ??? ??
http://dailysecu.com/news_view.php?article_id=4754
[50]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-50-320.jpg)
![1. ?????
? ??? ????¡? ?????
1??? ????? ?? ???
??? ?? ??¡????
[51]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-51-320.jpg)
![3. ???? ??
[52]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-52-320.jpg)
![3. ???? ??
?? ????? ??? ???? ??¡
[53]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-53-320.jpg)
![3. ???? ??
???? ?
????
???? ?
??? ????? ???
[54]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-54-320.jpg)
![3. ???? ??
??
???
???
?????
???
?????
00:00:01
sql injection and
10.0.0.1
8357
192.168.0.1
80
00:00:02
sql injection or
10.0.0.2
54479
192.168.0.2
8080
00:00:03
udp floding
10.0.0.3
5444
192.168.0.3
544
00:00:04
http RFI
10.0.0.4
4789
192.168.0.4
80
00:00:05
sql injection and
10.0.0.5
10658
192.168.0.5
80
00:00:06
tcp syn flooding
10.0.0.6
8523
192.168.0.6
80
00:00:07
icmp scan
10.0.0.7
0
192.168.0.7
0
00:00:08
sql injection or
10.0.0.8
26503
192.168.0.8
9701
00:00:09
sql injection and
10.0.0.9
3170
192.168.0.9
????
80
?
[55]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-55-320.jpg)
![3. ???? ??
???????
?????? ???¡
??? ??? ?? ????
????? ????¡
[56]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-56-320.jpg)
![1. ?????
????? ??? ??? ?? ???¡
??? ??? ??? ??¡
?? ????? ?????¡
[57]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-57-320.jpg)
![3. ???? ??
? ?? ? ? ??, ? ?? ? ? ??
??? ?? ????
??? ??? ????
??? ?? ???? ?? ? ??
[58]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-58-320.jpg)
![3. ???? ??
?? ????
? ??? ??
?? ??? ??
??? ?? ??
[59]](https://image.slidesharecdn.com/ptv1-131209095219-phpapp02/85/-59-320.jpg)
??? ????? ??? ??
- 2. ??? ¡®???? ???? ??? IDS? ????? ??¡¯ ?? truese@daum.net
- 3. ?? 1. ?????
- 4. 1. ????? ?? ?? ???? ????? ????¡ [4]
- 5. 1. ????? ?? ???? ?? ???? ? ??? ???, ???, ??? ?? ??¡ ??? ?? ??? ?? ??¡ ?? ???, ??????? ??? ????? ? ?? ?? ?? ?? ??? (??? ??? ????) ??? ? ?? ??????¡ [5]
- 6. 1. ????? ? ? ?? ?????? ??? ???? ??? ?? [6]
- 7. 1. ????? ??? ?? ?????¡ ?? ??? ? ?? ?????¡ [7]
- 8. 1. ????? ? ???? ?? (Clifford stoll, 1951~) ? ???? ? ¡®???? ?¡¯ ?? [8]
- 9. 1. ????? 1980?? ??? ?????¡ ??? ???? 1? ?? ??? ??? ?? ???? ??¡ ? 1??? ????? [9]
- 10. 1. ????? Private Networks Mobile Networks Public Networks ??/?? ??, ??? ? ?? ?? ?????? ?? ??? [10]
- 11. 1. ????? ???? ??, ??? ??? ??? ?? ???.. ??? ???? ?? ???? ??? ???¡ [11]
- 12. 1. ????? ? ??? ?? (Dorothy Denning, 1945~) ? IDS ?? ?? ??(1986) ¡ú ?? ?? ¡ú ??? ?? [12]
- 13. 1. ????? ? ?? ?? (Martin Roesch, 1951~) ? Snort ??(1998) ? IDS ??? [13]
- 14. 1. ????? IDS(Intrusion Detection System) ? ?? ??????? [14]
- 16. 1. ????? GET /index.html HTTP/1.1 (index.html ? ?????) HTTP/1.1 200OK (??!) [16]
- 17. 1. ????? ??? ?? ???? ????? ??? ????¡ ?? ?? ??? ?? ????? ??? ??? ? ??¡ ??? ???? ????? ???? ????¡ [17]
- 18. 1. ????? ?? ??? ???? ?? ??? ???? ?????? ??? ?? ?? ?????? ??? ?? ??? [18]
- 19. 1. ????? IDS ? ?? ?? ?? ? ?? IPS ? ?? ?? ?? ? ??/?? ???? ? ???? ?? ?? ? ??/?? [19]
- 20. 1. ????? IDS ?? ???? ???? ???? ??? ??????¡ ??? ?? ?? ??? IDS? ????¡ ??? ???? ???? ????? ? ??? ???¡ [20]
- 21. 1. ????? ????? ???? ?? ???? ????? ???? ? [21]
- 22. 1. ????? ??? ??? ???? hacked by Anonymous hack ?? ??? hack ??? ?? [22]
- 23. 1. ????? ??? ??? ?? ???? ? ?????? ?? ?? ?? ??? ?? ??? [23]
- 24. 1. ????? ?? ??! ?? ??? [24]
- 25. 1. ????? 7??? ?? ????? ?? ??? ??? ?? ???¡ ?? ??? ??¡ ???? ?? ?? ??¡ [25]
- 26. 1. ????? [26]
- 27. 1. ????? [27]
- 28. 1. ????? ??? ????, ??? ??? ????? ????? ??? ? ??¡ ?? ?????? ??? ??? ??? ??? ?? ? ??¡ ???? [28]
- 29. 1. ????? ??? ???? ?? ??? [29]
- 30. 1. ????? ??? ???? 9?? ??? ??~? [30]
- 31. ?? 1. ?????
- 32. 2. ????? ???? ???? DATA BIG DATA 1?? ?? ??? ?? [32]
- 33. 2. ????? ???? ??? ?? ??? ???, ?? ??? ?? ?? ???! [33]
- 34. 2. ????? ?? ??? ???, ??? ?? ?? ??? [34]
- 35. 1. ????? ??? ????? ???¡ ??? ??, ??? ???? ????¡ ?????? [35]
- 36. 2. ????? ?? ????? ??? ???? ?? ????? ?? ???? ?? ??? ????? ?? ??? ????? ????... [36]
- 37. 2. ????? ¡°???? ?? ??? ????? ??? ???, ???? ??? ?? ??? ??? ??? ??? ? ?? ??.¡± ¡°??? ??? ?? ??? ???? ??? ???? ?? ??? ??? ?? ???. ?? ???? ??? ??? ?? ??.¡± http://www.zdnet.co.kr/news/news_view.asp?artice_id=20130514083136 [37]
- 38. 2. ????? ??? ???? ??? ??? ???? [38]
- 39. 2. ????? ???? ?? ??? ???? ???? ?? ??? ???? ????? [39]
- 40. 2. ????? ??? ?? ? ? ?? ???, ??? ??? ?? ?? ?? ???? [40]
- 41. 1. ????? ??? ?? ???? ??? ????¡ ? ? ??? ????? ??? ???? ??¡ ?? ?? ?? ?! [41]
- 42. 2. ????? ??? ??? + ???? = ???? = ???? ???? ???? + ???? ? ???? ???? [42]
- 43. 1. ????? ????? ??? ?????? ??? ????¡ ????? ?????? ????? ???? ??? ? ???? [43]
- 44. 2. ????? GET /index.php?id=5677 HTTP/1.1 200 OK GET /index.php?id=5677%20and%201=1 HTTP/1.1 200 OK [44]
- 45. 1. ????? ??? ?? ????? ?? ??? ??? ????? ???? ??? ?? ??? ?? ??? ??? ?? ?? ?? ??¡ [45]
- 46. 1. ????? ??? ???? ??? ????? ?? ????¡ ???? ??? ??? ? ????? ?????¡ ??? ????, ????¡?????? [46]
- 47. 2. ????? ?????????(ÐÞÉíýR¼ÒÖ·ø ƽÌìÏÂ) ? ?? ??? ????? ????? ??? ?? ????? [47]
- 48. ?? 1. ?????
- 49. 3. ???? ?? ?? ? ????? tcp syn flooding 2001? 3GB udp port scan 2011? ???? ?? ??? 70GB (???????) slammer worm [49]
- 50. 3. ???? ?? ??? ???? ??? ?? ???¡ ?? ??? ???! ????¡??? ?? 1??? 11~15TB? ???? ? ??? ???? ?? ? ???? ???? ???? ? ?? ?? ??? ?? ??? ????. 1TB? ? 1? ?? ??? ?? http://dailysecu.com/news_view.php?article_id=4754 [50]
- 51. 1. ????? ? ??? ????¡? ????? 1??? ????? ?? ??? ??? ?? ??¡???? [51]
- 52. 3. ???? ?? [52]
- 53. 3. ???? ?? ?? ????? ??? ???? ??¡ [53]
- 54. 3. ???? ?? ???? ? ???? ???? ? ??? ????? ??? [54]
- 55. 3. ???? ?? ?? ??? ??? ????? ??? ????? 00:00:01 sql injection and 10.0.0.1 8357 192.168.0.1 80 00:00:02 sql injection or 10.0.0.2 54479 192.168.0.2 8080 00:00:03 udp floding 10.0.0.3 5444 192.168.0.3 544 00:00:04 http RFI 10.0.0.4 4789 192.168.0.4 80 00:00:05 sql injection and 10.0.0.5 10658 192.168.0.5 80 00:00:06 tcp syn flooding 10.0.0.6 8523 192.168.0.6 80 00:00:07 icmp scan 10.0.0.7 0 192.168.0.7 0 00:00:08 sql injection or 10.0.0.8 26503 192.168.0.8 9701 00:00:09 sql injection and 10.0.0.9 3170 192.168.0.9 ???? 80 ? [55]
- 56. 3. ???? ?? ??????? ?????? ???¡ ??? ??? ?? ???? ????? ????¡ [56]
- 57. 1. ????? ????? ??? ??? ?? ???¡ ??? ??? ??? ??¡ ?? ????? ?????¡ [57]
- 58. 3. ???? ?? ? ?? ? ? ??, ? ?? ? ? ?? ??? ?? ???? ??? ??? ???? ??? ?? ???? ?? ? ?? [58]
- 59. 3. ???? ?? ?? ???? ? ??? ?? ?? ??? ?? ??? ?? ?? [59]