An IPS for Web Applications
نویسندگان
چکیده
This work presents an IPS for web applications that combines anomaly detection, misuse detection, and a prevention module. This approach provides us a solution that produce a number of false positives and false negatives less than traditional solutions. The proposed system is also able to update the misuse and anomaly model according to feedback received by the security manager. Finally, in our system the anomaly model has been specifically designed for web applications. We implemented and experimented our system in a real service company. From the results arises an improvement with respect to other state-of-the-art WEBIDSs.
منابع مشابه
IDS and IPS System in Multi-Tier Web Applications
In the age of information technology the facets of work and availability of everything on the internet services so the internet service and applications have become an inextricable part of day today life, enabling communication and the management of personal information from anywhere. To accommodate this increase in application and data complexity, web and its various services have moved to a m...
متن کاملIPS: A Lightweight Framework for Cross-Platform Multimedia Streaming Server
Multimedia presentation has been popular by used in the field of education, especially in online learning. The most common practice is to conduct a presentation by utilizing media player on web or native applications. However, this mode of operation belongs to a heavyweight practice which incurs poor performance. Considering smooth operation on all types of smartphone or PC platforms, a lightwe...
متن کاملMasibty: an anomaly based intrusion prevention system for web applications
In this whitepaper we briefly describe Masibty, a novel anomaly-based web application firewall we devised. It has a modular and extensible structure. We give an overview of the anomaly detection models we implemented in it, and show that it is able to detect different kind of real world attacks on common web applications. We also evaluate its performance as an IPS, using both plain and mutated ...
متن کاملDesign and Evaluation of a Method for Partitioning and Offloading Web-based Applications in Mobile Systems with Bandwidth Constraints
Computation offloading is known to be among the effective solutions of running heavy applications on smart mobile devices. However, irregular changes of a mobile data rate have direct impacts on code partitioning when offloading is in progress. It is believed that once a rate-adaptive partitioning performed, the replication of such substantial processes due to bandwidth fluctuation can be avoid...
متن کاملایجاد نیمه خودکار مشاپ های سازمانی با استفاده از توصیفات معنایی
Mashups are next generation of web applications. A mashup is a lightweight web application that is created by combining information or capabilities from more than one existing resources to deliver a new and integrated experience to the user. Mashups introduce a new class of integration techniques in enterprises for implementing situational applications (i.e. applications that come together to s...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
عنوان ژورنال:
- JCP
دوره 4 شماره
صفحات -
تاریخ انتشار 2009