Learning Web Application Firewall - Benefits and Caveats

Abstract : The paper discusses selected issues related to the implementation and deployment of the Web Application Firewall that protects the target application by verifying the incoming requests and their parameters through matching them against recorded usage patterns. These patterns in turn are learned from the traffic generated by the users of the application. Since many web applications, including these operated by the government, are prone to exploits, there is a need to introduce new easily implementable methods of protection to prevent unauthorized access to sensitive data. A Learning Web Application Firewall offers a flexible, application-tailored, yet easy to deploy solution. There are certain concerns, however, regarding the classification of data that is used for the learning process which can, in certain cases, impair the firewall ability to classify traffic correctly. These concerns are discussed on the basis of reference implementation prepared by the authors.
Type de document :
Communication dans un congrès
A Min Tjoa; Gerald Quirchmayr; Ilsun You; Lida Xu. 1st Availability, Reliability and Security (CD-ARES), Aug 2011, Vienna, Austria. Springer, Lecture Notes in Computer Science, LNCS-6908, pp.295-308, 2011, Availability, Reliability and Security for Business, Enterprise and Health Information Systems. 〈10.1007/978-3-642-23300-5_23〉
Liste complète des métadonnées

Littérature citée [19 références]  Voir  Masquer  Télécharger

https://hal.inria.fr/hal-01590402
Contributeur : Hal Ifip <>
Soumis le : mardi 19 septembre 2017 - 15:11:57
Dernière modification le : jeudi 4 octobre 2018 - 22:12:02

Fichier

978-3-642-23300-5_23_Chapter.p...
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Citation

Dariusz Pałka, Marek Zachara. Learning Web Application Firewall - Benefits and Caveats. A Min Tjoa; Gerald Quirchmayr; Ilsun You; Lida Xu. 1st Availability, Reliability and Security (CD-ARES), Aug 2011, Vienna, Austria. Springer, Lecture Notes in Computer Science, LNCS-6908, pp.295-308, 2011, Availability, Reliability and Security for Business, Enterprise and Health Information Systems. 〈10.1007/978-3-642-23300-5_23〉. 〈hal-01590402〉

Partager

Métriques

Consultations de la notice

55

Téléchargements de fichiers

20