Semantic System for Attacks and Intrusions Detection
| Autor: | Kamal Eddine El Kadiri, Abdeslam El Azzouzi |
|---|---|
| Rok vydání: | 2015 |
| Předmět: |
Web server
business.industry Computer science Anomaly-based intrusion detection system Inference Web Ontology Language Ontology (information science) Web application security computer.software_genre Computer security World Wide Web Description logic Information system business computer Software computer.programming_language |
| Zdroj: | International Journal of Digital Crime and Forensics. 7:19-32 |
| ISSN: | 1941-6229 1941-6210 |
| DOI: | 10.4018/ijdcf.2015100102 |
| Popis: | The increasing development of information systems complicate task of protecting against threats. They have become vulnerable to malicious attacks that may affect the essential properties such as confidentiality, integrity and availability. Then the security becomes an overriding concern. Securing a system begins with prevention methods that are insufficient to reduce the danger of attacks, that must be accomplished by intrusion and attack detection systems. In this paper, a method for detecting web application attacks is proposed. Unlike methods based on signatures, the proposed solution is a technique based on ontology. It describes the Web attacks, the HTTP request, and the application using semantic rules. The system is able to detect effectively the sophisticated attacks by analysing user requests. The semantic rules allow inference about the ontologies models to detect complex variations of web attacks. The ontologies models was developed using description logics which was based Web Ontology Language (OWL). The proposed system is able to be installed on an HTTP server. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|