[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to main content
Springer Nature Link
Log in

Data Mining Methods for Anomaly Detection of HTTP Request Exploitations

  • Conference paper
Fuzzy Systems and Knowledge Discovery (FSKD 2005)

Part of the book series: Lecture Notes in Computer Science ((LNAI,volume 3614))

Included in the following conference series:

Abstract

HTTP request exploitations take substantial portion of network-based attacks. This paper presents a novel anomaly detection framework, which uses data mining technologies to build four independent detection models. In the training phase, these models mine specialty of every web program using web server log files as data source, and in the detection phase, each model takes the HTTP requests upon detection as input and calculates at least one anomalous probability as output. All the four models totally generate eight anomalous probabilities, which are weighted and summed up to produce a final probability, and this probability is used to decide whether the request is malicious or not. Experiments prove that our detection framework achieves close to perfect detection rate under very few false positives.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Kruegel, C.: Anomaly Detection of Web-based Attacks. In: CCS 2003, Washington, DC, USA, October 27–31 (2003)

    Google Scholar 

  2. Billingsley, P.: Probability and Measure,3 edn., April 1995. Wiley Interscience, Hoboken (1995)

    MATH  Google Scholar 

  3. Mitchell, T.: Machine Learning. McGraw Hill, New York (1997)

    MATH  Google Scholar 

  4. CGISecurity. The Cross Site Scripting FAQ

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Department of Computer Science and Technology, Huazhong University of Science and Technology, Wuhan, 430074, China

    Xiao-Feng Wang, Jing-Li Zhou, Sheng-Sheng Yu & Long-Zheng Cai

Authors
  1. Xiao-Feng Wang
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Jing-Li Zhou
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Sheng-Sheng Yu
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Long-Zheng Cai
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. School of Electrical and Electronic Engineering, Nanyang Technological University, Block S1, Nanyang Avenue, 639798, Singapore

    Lipo Wang

  2. Honda Research Institute Europe GmbH, Offenbach/Main, Germany

    Yaochu Jin

Rights and permissions

Reprints and permissions

Copyright information

© 2005 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Wang, XF., Zhou, JL., Yu, SS., Cai, LZ. (2005). Data Mining Methods for Anomaly Detection of HTTP Request Exploitations. In: Wang, L., Jin, Y. (eds) Fuzzy Systems and Knowledge Discovery. FSKD 2005. Lecture Notes in Computer Science(), vol 3614. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11540007_39

Download citation

  • DOI: https://doi.org/10.1007/11540007_39

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-28331-7

  • Online ISBN: 978-3-540-31828-6

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation