Profile based Web Application Attack Detection and Filtering Method

Young Tae Yun; Jae Cheol Ryou; Sang Seo Park; Jong Wook Park

Profile based Web Application Attack Detection and Filtering Method

The KIPS Transactions:PartC, Vol. 13, No. 1, pp. 19-26, Feb. 2006

10.3745/KIPSTC.2006.13.1.19, PDF Download:

Abstract

Recently, web server hacking is trending toward web application hacking which uses comparatively vulnerable web applications based on open sources. And, it is possible to hack databases using web interfaces because web servers are usually connected databases. Web application attacks use vulnerabilities not in web server itself, but in web application structure, logical error and code error. It is difficult to defend web applications from various attacks by only using pattern matching detection method and code modification. In this paper, we propose a method to secure the web applications based on profiling which can detect and filter out abnormal web application requests.

Statistics

Show / Hide Statistics

Statistics (Cumulative Counts from September 1st, 2017)
Multiple requests among the same browser session are counted as one view.
If you mouse over a chart, the values of data points will be shown.

Cite this article

[IEEE Style]

Y. T. Yun, J. C. Ryou, S. S. Park, J. W. Park, "Profile based Web Application Attack Detection and Filtering Method," The KIPS Transactions:PartC, vol. 13, no. 1, pp. 19-26, 2006. DOI: 10.3745/KIPSTC.2006.13.1.19.

[ACM Style]

Young Tae Yun, Jae Cheol Ryou, Sang Seo Park, and Jong Wook Park. 2006. Profile based Web Application Attack Detection and Filtering Method. The KIPS Transactions:PartC, 13, 1, (2006), 19-26. DOI: 10.3745/KIPSTC.2006.13.1.19.