A Proposal of Algorithm for Web Applications Cyber Attack Detection

Rafał Kozik; Michał Choraś; Rafał Renk; Witold Hołubowicz

doi:10.1007/978-3-662-45237-0_61

Conference papers

A Proposal of Algorithm for Web Applications Cyber Attack Detection

Rafał Kozik ^{1, 2} Michał Choraś ^{1, 2} Rafał Renk ^{1, 3} Witold Hołubowicz ^{2, 3}

1 ITTI Company Limited [Poznań]

2 UT&LS Bydgoszcz

3 UAM - Adam Mickiewicz University in Poznań

Abstract : Injection attacks (e.g. XSS or SQL) are ranked at the first place in world-wide lists (e.g. MITRE and OWASP). These types of attacks can be easily obfuscated. Therefore it is difficult or even impossible to provide a reliable signature for firewalls that will detect such attacks. In this paper, we have proposed an innovative method for modelling the normal behaviour of web applications. The model is based on information obtained from HTTP requests generated by a client to a web server. We have evaluated our method on CSIC 2010 HTTP Dataset achieving satisfactory results.

Keywords : web attacks detection web applications firewall machine learning data mining

Document type :

Conference papers

Domain :

Computer Science [cs]

Humanities and Social Sciences / Library and information sciences

Complete list of metadata

Cited literature [7 references] Display Hide Download

https://hal.inria.fr/hal-01405662
Contributor : Hal Ifip <>
Submitted on : Wednesday, November 30, 2016 - 11:28:06 AM
Last modification on : Friday, December 29, 2017 - 6:06:01 PM
Long-term archiving on: : Monday, March 27, 2017 - 9:26:13 AM

A Proposal of Algorithm for Web Applications Cyber Attack Detection

File

Licence

Identifiers

Collections

Citation

Export

Metrics

313

1492

A Proposal of Algorithm for Web Applications Cyber Attack Detection

File

Licence

Identifiers

Collections

Citation

Export

Share

Metrics

313

1492