Share Email Print
cover

Proceedings Paper

Ultrabroadband photonic Internet: data mining approach to security aspects
Author(s): Arkadiusz Kalicki
Format Member Price Non-Member Price
PDF $14.40 $18.00
cover GOOD NEWS! Your organization subscribes to the SPIE Digital Library. You may be able to download this paper for free. Check Access

Paper Abstract

Web applications became most popular medium in the Internet. Popularity, easiness of web application frameworks together with careless development results in high number of vulnerabilities and attacks. There are several types of attacks possible because of improper input validation. SQL injection is ability to execute arbitrary SQL queries in a database through an existing application. Cross-site scripting is the vulnerability which allows malicious web users to inject code into the web pages viewed by other users. Cross-Site Request Forgery (CSRF) is an attack that tricks the victim into loading a page that contains malicious request. Web spam in blogs. In order to secure web applications intrusion detection (IDS) and intrusion prevention systems (IPS) are being used. Intrusion detection systems are divided in two groups: misuse detection (traditional IDS) and anomaly detection. Misuse detection systems are signature based, have high accuracy in detecting many kinds of known attacks but cannot detect unknown and emerging attacks. This can be complemented with anomaly based intrusion detection and prevention systems. This paper presents anomaly driven proxy as an IPS and data mining based algorithm which was used to detecting anomalies. The principle of this method is the comparison of the incoming HTTP traffic with a previously built profile that contains a representation of the "normal" or expected web application usage sequence patterns. The frequent sequence patterns are found with GSP algorithm. Some basic tests show that the software catches malicious requests.

Paper Details

Date Published: 5 August 2009
PDF: 9 pages
Proc. SPIE 7502, Photonics Applications in Astronomy, Communications, Industry, and High-Energy Physics Experiments 2009, 75021Y (5 August 2009); doi: 10.1117/12.838261
Show Author Affiliations
Arkadiusz Kalicki, Warsaw Univ. of Technology (Poland)


Published in SPIE Proceedings Vol. 7502:
Photonics Applications in Astronomy, Communications, Industry, and High-Energy Physics Experiments 2009
Ryszard S. Romaniuk; Krzysztof S. Kulpa, Editor(s)

© SPIE. Terms of Use
Back to Top