Name
Title | ||
|---|---|---|
Application attack detection system (AADS): An anomaly based behavior analysis approach |
Abstract | ||
|---|---|---|
Network security, especially application layer security has gained importance with the rapid growth of web-based applications. Anomaly based approaches that profile the network traffic and look for abnormalities are effective against zero-day attacks. The complex nature of the web traffic, availability of multiple applications, privacy concerns and its own limitations make the development of such anomaly-based systems difficult. This paper proposes a framework for application layer anomaly detection. The framework uses a multiple model approach to detect anomalies. The framework encompasses a dedicated training phase to model the specific network traffic and a detection phase that can be deployed in real time. The framework has been applied to HTTP application traffic and multiple models have been developed. The experimental evaluation results of the AADS using multiple attack vectors have achieved a detection rate of almost 100%. In addition, the AADS has a false positive rate of 0.03%. |
Year | DOI | Venue |
|---|---|---|
2011 | 10.1109/AICCSA.2011.6126606 | Computer Systems and Applications |
Keywords | Field | DocType |
application layer anomaly detection,web traffic,multiple attack vector,multiple model,application traffic,specific network traffic,behavior analysis approach,network traffic,application attack detection system,application layer security,multiple application,multiple model approach,real time,false positive rate,anomaly,computer network security,http,web based applications,buffer overflow,transport protocols,data model,data models,behavior analysis,internet,payloads,framework,anomaly detection,databases,network security | Anomaly detection,Data modeling,False positive rate,Application layer,Computer science,Network security,Computer network,Real-time computing,The Internet,Buffer overflow,Payload | Conference |
ISSN | ISBN | Citations |
2161-5322 E-ISBN : 978-1-4577-0474-1 | 978-1-4577-0474-1 | 1 |
PageRank | References | Authors |
0.35 | 5 | 3 |
Name | Order | Citations | PageRank |
|---|---|---|---|
| Ram Prasad Viswanathan | 1 | 1 | 0.35 |
| Youssif Alnashif | 2 | 88 | 7.17 |
| Salim Hariri | 3 | 2593 | 184.23 |