A Proposal of Algorithm for Web Applications Cyber Attack Detection - Computer Information Systems and Industrial Management Access content directly
Conference Papers Year : 2014

A Proposal of Algorithm for Web Applications Cyber Attack Detection

Abstract

Injection attacks (e.g. XSS or SQL) are ranked at the first place in world-wide lists (e.g. MITRE and OWASP). These types of attacks can be easily obfuscated. Therefore it is difficult or even impossible to provide a reliable signature for firewalls that will detect such attacks. In this paper, we have proposed an innovative method for modelling the normal behaviour of web applications. The model is based on information obtained from HTTP requests generated by a client to a web server. We have evaluated our method on CSIC 2010 HTTP Dataset achieving satisfactory results.

Domains

Computer Science [cs] Library and information sciences
Fichier principal
Vignette du fichier
978-3-662-45237-0_61_Chapter.pdf (364.85 Ko) Télécharger le fichier
Origin : Files produced by the author(s)

Hal Ifip  : Connect in order to contact the contributor

https://inria.hal.science/hal-01405662

Submitted on : Wednesday, November 30, 2016-11:28:06 AM

Last modification on : Friday, February 16, 2024-5:06:05 PM

Long-term archiving on: Monday, March 27, 2017-9:26:13 AM

Download

Dates and versions

hal-01405662 , version 1 (30-11-2016)

Licence

Attribution

Identifiers

Cite

Rafał Kozik, Michał Choraś, Rafał Renk, Witold Hołubowicz. A Proposal of Algorithm for Web Applications Cyber Attack Detection. 13th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Nov 2014, Ho Chi Minh City, Vietnam. pp.680-687, ⟨10.1007/978-3-662-45237-0_61⟩. ⟨hal-01405662⟩

Export

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

IFIP-LNCS IFIP IFIP-TC IFIP-TC8 IFIP-LNCS-8838 IFIP-CISIM
185 View
1155 Download

Altmetric

Share

Gmail Facebook X LinkedIn More