5 August 2009 Ultrabroadband photonic Internet: data mining approach to security aspects
Author Affiliations +
Proceedings Volume 7502, Photonics Applications in Astronomy, Communications, Industry, and High-Energy Physics Experiments 2009; 75021Y (2009) https://doi.org/10.1117/12.838261
Event: Photonics Applications in Astronomy, Communications, Industry, and High-Energy Physics Experiments 2009, 2009, Wilga, Poland
Abstract
Web applications became most popular medium in the Internet. Popularity, easiness of web application frameworks together with careless development results in high number of vulnerabilities and attacks. There are several types of attacks possible because of improper input validation. SQL injection is ability to execute arbitrary SQL queries in a database through an existing application. Cross-site scripting is the vulnerability which allows malicious web users to inject code into the web pages viewed by other users. Cross-Site Request Forgery (CSRF) is an attack that tricks the victim into loading a page that contains malicious request. Web spam in blogs. In order to secure web applications intrusion detection (IDS) and intrusion prevention systems (IPS) are being used. Intrusion detection systems are divided in two groups: misuse detection (traditional IDS) and anomaly detection. Misuse detection systems are signature based, have high accuracy in detecting many kinds of known attacks but cannot detect unknown and emerging attacks. This can be complemented with anomaly based intrusion detection and prevention systems. This paper presents anomaly driven proxy as an IPS and data mining based algorithm which was used to detecting anomalies. The principle of this method is the comparison of the incoming HTTP traffic with a previously built profile that contains a representation of the "normal" or expected web application usage sequence patterns. The frequent sequence patterns are found with GSP algorithm. Some basic tests show that the software catches malicious requests.
© (2009) COPYRIGHT Society of Photo-Optical Instrumentation Engineers (SPIE). Downloading of the abstract is permitted for personal use only.
Arkadiusz Kalicki, Arkadiusz Kalicki, } "Ultrabroadband photonic Internet: data mining approach to security aspects", Proc. SPIE 7502, Photonics Applications in Astronomy, Communications, Industry, and High-Energy Physics Experiments 2009, 75021Y (5 August 2009); doi: 10.1117/12.838261; https://doi.org/10.1117/12.838261
PROCEEDINGS
9 PAGES


SHARE
RELATED CONTENT

Data mining approach to web application intrusions detection
Proceedings of SPIE (October 06 2011)
Web usage data mining agent
Proceedings of SPIE (March 12 2002)
Data mining model and algorithm in IDS
Proceedings of SPIE (April 15 2004)

Back to Top