A Proposal of Algorithm for Web Applications Cyber Attack Detection

机译：网络应用网络攻击检测算法提案

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

Injection attacks (e.g. XSS or SQL) are ranked at the first place in world-wide lists (e.g. MITRE and OWASP). These types of attacks can be easily obfuscated. Therefore it is difficult or even impossible to provide a reliable signature for firewalls that will detect such attacks. In this paper, we have proposed an innovative method for modelling the normal behaviour of web applications. The model is based on information obtained from HTTP requests generated by a client to a web server. We have evaluated our method on CSIC 2010 HTTP Dataset achieving satisfactory results.

机译：注射攻击（例如XSS或SQL）排名在全球列表中的第一名（例如斜切和OWASP）。这些类型的攻击可以很容易地混淆。因此，对于将检测此类攻击的防火墙提供可靠的签名是困难甚至不可能的。在本文中，我们提出了一种创新方法，用于建模Web应用程序的正常行为。该模型基于从客户端生成的HTTP请求到Web服务器获得的信息。我们在实现令人满意的结果的CSIC 2010 HTTP数据集中评估了我们的方法。

著录项

来源
《IFIP TC8 International Conference on Computer Information Systems and Industrial Management》|2014年||共8页
会议地点
作者
Rafal Kozik; Michal Choras; Rafal Renk; Witold Holubowicz;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类 TP3-53;
关键词
Web attacks detection; Web applications firewall; Machine learning; Data mining;

机译：Web攻击检测;Web应用防火墙;机器学习;数据挖掘;

相似文献

外文文献
中文文献
专利

1. Battle of the Attack Detection Algorithms: Disclosing Cyber Attacks on Water Distribution Networks [J] . Taormina Riccardo, Galelli Stefano, Tippenhauer Nils Ole, Journal of Water Resources Planning and Management . 2018,第8期

机译：攻击检测算法之战：揭示自来水网络的网络攻击
2. Mitsubishi Electric Develops Cyber-attack Detection Technology for Critical Infrastructure Systems Real-time Detection of Cyber-attacks [J] . Oil amp, Gas Eurasia group Oil & Gas Eurasia . 2017,第3期

机译：三菱电机为关键基础设施系统实时检测网络攻击网络攻击检测技术
3. Cyber-attacks and faults reconstruction using finite time convergent observation algorithms: Electric power network application [J] . Nateghi S., Shtessel Y., Edwards C. Journal of the Franklin Institute . 2020,第1期

机译：有限时间收敛观测算法的网络攻击与故障重构：电网应用
4. A Proposal of Algorithm for Web Applications Cyber Attack Detection [C] . Rafal Kozik, Michal Choras, Rafal Renk, IFIP TC 8 international conference on computer information systems and industrial management . 2014

机译：Web应用网络攻击检测算法的建议
5. Cyber security of the smart grid: Attack exposure analysis, detection algorithms, and testbed evaluation. [D] . Hahn, Adam Lee. 2013

机译：智能电网的网络安全：攻击暴露分析，检测算法和测试平台评估。
6. Data-driven approach of CUSUM algorithm in temporal aberrant event detection using interactive web applications [O] . Ye Li, Michael Whelan, Leigh Hobbs, 2016

机译：使用交互式Web应用程序的时态异常事件检测中CUSUM算法的数据驱动方法
7. A Proposal of Algorithm for Web Applications Cyber Attack Detection [O] . Kozik, Rafał, Choraś, Michał, Renk, Rafał, 2014

机译：Web应用网络攻击检测算法的建议

A Proposal of Algorithm for Web Applications Cyber Attack Detection

摘要

著录项

相似文献

相关主题

期刊订阅