Presentation | 2013/3/7 Development of Web Application Firewall by Using Bayesian Filter TAKESHI HISHINUMA, NORIAKI YOSHIURA, |
---|---|
PDF Download Page | PDF download Page Link |
Abstract(in Japanese) | (See Japanese page) |
Abstract(in English) | Recently, many web applications which provide many kinds of services on the Internet and secu- rity is important in their operations. Web Application Firewall(WAF)is used for security of web applications. Many of WAFs consists of signature-based filters which have prepared particular input patterns, but the fil- ters do not always have proper patterns for malicious codes, malicious scripts and vulnerability due to bugs of individual web applications. This paper develops a WAF which learns good or bad input patterns by Bayesian filter when the administrators of web applications suggest input which should be rejected or ac- cepted. Input inspection uses a Bayesian filter and an anomaly detector. The anomaly detector is based on statistics, which are data of N-gram of inputs for web applications. This paper implements a prototype of our WAF by script language Python and experiments with randomly-generated HTTP requests. The results of the experiment found that iteration of learning by using Bayesian filter decreases false positives and false negatives. |
Keyword(in Japanese) | (See Japanese page) |
Keyword(in English) | Web Application Firewall / Bayesian Filter / Anomaly Detection / N-gram |
Paper # | Vol.2013-IOT-20 No.11 |
Date of Issue |
Conference Information | |
Committee | IA |
---|---|
Conference Date | 2013/3/7(1days) |
Place (in Japanese) | (See Japanese page) |
Place (in English) | |
Topics (in Japanese) | (See Japanese page) |
Topics (in English) | |
Chair | |
Vice Chair | |
Secretary | |
Assistant |
Paper Information | |
Registration To | Internet Architecture(IA) |
---|---|
Language | JPN |
Title (in Japanese) | (See Japanese page) |
Sub Title (in Japanese) | (See Japanese page) |
Title (in English) | Development of Web Application Firewall by Using Bayesian Filter |
Sub Title (in English) | |
Keyword(1) | Web Application Firewall |
Keyword(2) | Bayesian Filter |
Keyword(3) | Anomaly Detection |
Keyword(4) | N-gram |
1st Author's Name | TAKESHI HISHINUMA |
1st Author's Affiliation | Graduate School of Science and Engineering, Saitama University() |
2nd Author's Name | NORIAKI YOSHIURA |
2nd Author's Affiliation | Graduate School of Science and Engineering, Saitama University |
Date | 2013/3/7 |
Paper # | Vol.2013-IOT-20 No.11 |
Volume (vol) | vol.112 |
Number (no) | 489 |
Page | pp.pp.- |
#Pages | 6 |
Date of Issue |