%0 Conference Proceedings
%T A Proposal of Algorithm for Web Applications Cyber Attack Detection
%+ ITTI Company Limited [Poznań]
%+ UT&LS Bydgoszcz
%+ Uniwersytet im. Adama Mickiewicza w Poznaniu  = Adam Mickiewicz University in Poznań (UAM)
%A Kozik, Rafał
%A Choraś, Michał
%A Renk, Rafał
%A Hołubowicz, Witold
%Z Part 9: Various Aspects of Computer Security
%< avec comité de lecture
%( Lecture Notes in Computer Science
%B 13th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM)
%C Ho Chi Minh City, Vietnam
%Y Khalid Saeed
%Y Václav Snášel
%I Springer
%3 Computer Information Systems and Industrial Management
%V LNCS-8838
%P 680-687
%8 2014-11-05
%D 2014
%R 10.1007/978-3-662-45237-0_61
%K web attacks detection
%K web applications firewall
%K machine learning
%K data mining
%Z Computer Science [cs]
%Z Humanities and Social Sciences/Library and information sciencesConference papers
%X Injection attacks (e.g. XSS or SQL) are ranked at the first place in world-wide lists (e.g. MITRE and OWASP). These types of attacks can be easily obfuscated. Therefore it is difficult or even impossible to provide a reliable signature for firewalls that will detect such attacks. In this paper, we have proposed an innovative method for modelling the normal behaviour of web applications. The model is based on information obtained from HTTP requests generated by a client to a web server. We have evaluated our method on CSIC 2010 HTTP Dataset achieving satisfactory results.
%G English
%Z TC 8
%2 https://inria.hal.science/hal-01405662/document
%2 https://inria.hal.science/hal-01405662/file/978-3-662-45237-0_61_Chapter.pdf
%L hal-01405662
%U https://inria.hal.science/hal-01405662
%~ SHS
%~ IFIP-LNCS
%~ IFIP
%~ IFIP-TC
%~ IFIP-TC8
%~ IFIP-LNCS-8838
%~ IFIP-CISIM