Computer Information Systems and Industrial Management 13th IFIP TC8 International Conference, CISIM 2014, Ho Chi Minh City, Vietnam, November 5-7, 2014
Abstract : Injection attacks (e.g. XSS or SQL) are ranked at the first place in world-wide lists (e.g. MITRE and OWASP). These types of attacks can be easily obfuscated. Therefore it is difficult or even impossible to provide a reliable signature for firewalls that will detect such attacks. In this paper, we have proposed an innovative method for modelling the normal behaviour of web applications. The model is based on information obtained from HTTP requests generated by a client to a web server. We have evaluated our method on CSIC 2010 HTTP Dataset achieving satisfactory results.
Khalid Saeed; Václav Snášel. 13th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Nov 2014, Ho Chi Minh City, Vietnam. Springer, Lecture Notes in Computer Science, LNCS-8838, pp.680-687, 2014, Computer Information Systems and Industrial Management. 〈10.1007/978-3-662-45237-0_61〉
https://hal.inria.fr/hal-01405662
Contributor : Hal Ifip
<>
Submitted on : Wednesday, November 30, 2016 - 11:28:06 AM
Last modification on : Friday, December 29, 2017 - 6:06:01 PM
Document(s) archivé(s) le : Monday, March 27, 2017 - 9:26:13 AM
Rafał Kozik, Michał Choraś, Rafał Renk, Witold Hołubowicz. A Proposal of Algorithm for Web Applications Cyber Attack Detection. Khalid Saeed; Václav Snášel. 13th IFIP International Conference on Computer Information Systems and Industrial Management (CISIM), Nov 2014, Ho Chi Minh City, Vietnam. Springer, Lecture Notes in Computer Science, LNCS-8838, pp.680-687, 2014, Computer Information Systems and Industrial Management. 〈10.1007/978-3-662-45237-0_61〉. 〈hal-01405662〉