An adaptive model is proposed, which detect WEB-based attacks via identifying normal behaviors. By describing the structural features of Request-URL and using multiple hidden Markov model, the sample set is divided into several smaller subsets by request type. The discreteness of subset is calculated by the properties. Based on this, analyze the discreteness of each WEB requests to determine whether the request is normal, and then construct the detector based on hidden Markov model. The experimental results show that the adaptive model can effectively identify WEB-based attacks and reduce false alert. © 2012 IEEE.
CITATION STYLE
Fan, W. K. G. (2012). An adaptive anomaly detection of WEB-based attacks. In ICCSE 2012 - Proceedings of 2012 7th International Conference on Computer Science and Education (pp. 690–694). https://doi.org/10.1109/ICCSE.2012.6295168
Mendeley helps you to discover research relevant for your work.