Web Anomaly Detection System for Mobile Web Client

Abstract

Careless development of Web applications has often caused occurrence of new Web-based attacks. The signature-based intrusion detection system cannot detect these attacks as it seems to lack the capability to deal with such various new intrusions. As a result, it is necessary to research and develop new types of detection methods that can detect new intrusions as well as protect the system from previous well-known attacks. In this paper, we propose a web anomaly detection system. This system can detect suspicious Web traffic using an HTTP traffic pattern analysis and the URI field information analysis of the HTTP packet. We also demonstrate the feasibility of the proposed system by implementing the system and showing some reasonable results.