{"title":"基于本体的web应用安全入侵检测系统","authors":"H. A. Karande, Shyam S. Gupta","doi":"10.1109/ICCN.2015.44","DOIUrl":null,"url":null,"abstract":"Effective web security practices are key to the success of the Semantic Web. Security measures of authorization, integrity and privacy are to be catered for storage and maintenance of data on the web. Ontology is being highly recommended for security of web services. Many security parameters are being embedded in OWL-S. Security models mapped to ontology seem to be very effective. This paper demonstrates ontology based intrusion detection system for web application security. Context capture of information from links and scripts is the premise of the proposed system. The proposed IDS ontological model detects protocol specific attacks as well identifies malicious scripts. This model identifies types of attacks and vulnerabilities therein. A TCP dump of data on LAN was acquired and evaluated against KDD99 intrusion detection predictor model dataset. Ontology model was designed using Protégé. Our ontology model establishes semantic relationship between attacks and networks. The experimental results showed our model has improved detection rate and low rate of false positives.","PeriodicalId":431743,"journal":{"name":"2015 International Conference on Communication Networks (ICCN)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2015-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":"{\"title\":\"Ontology based intrusion detection system for web application security\",\"authors\":\"H. A. Karande, Shyam S. Gupta\",\"doi\":\"10.1109/ICCN.2015.44\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Effective web security practices are key to the success of the Semantic Web. Security measures of authorization, integrity and privacy are to be catered for storage and maintenance of data on the web. Ontology is being highly recommended for security of web services. Many security parameters are being embedded in OWL-S. Security models mapped to ontology seem to be very effective. This paper demonstrates ontology based intrusion detection system for web application security. Context capture of information from links and scripts is the premise of the proposed system. The proposed IDS ontological model detects protocol specific attacks as well identifies malicious scripts. This model identifies types of attacks and vulnerabilities therein. A TCP dump of data on LAN was acquired and evaluated against KDD99 intrusion detection predictor model dataset. Ontology model was designed using Protégé. Our ontology model establishes semantic relationship between attacks and networks. The experimental results showed our model has improved detection rate and low rate of false positives.\",\"PeriodicalId\":431743,\"journal\":{\"name\":\"2015 International Conference on Communication Networks (ICCN)\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"9\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2015 International Conference on Communication Networks (ICCN)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICCN.2015.44\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 International Conference on Communication Networks (ICCN)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCN.2015.44","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Ontology based intrusion detection system for web application security
Effective web security practices are key to the success of the Semantic Web. Security measures of authorization, integrity and privacy are to be catered for storage and maintenance of data on the web. Ontology is being highly recommended for security of web services. Many security parameters are being embedded in OWL-S. Security models mapped to ontology seem to be very effective. This paper demonstrates ontology based intrusion detection system for web application security. Context capture of information from links and scripts is the premise of the proposed system. The proposed IDS ontological model detects protocol specific attacks as well identifies malicious scripts. This model identifies types of attacks and vulnerabilities therein. A TCP dump of data on LAN was acquired and evaluated against KDD99 intrusion detection predictor model dataset. Ontology model was designed using Protégé. Our ontology model establishes semantic relationship between attacks and networks. The experimental results showed our model has improved detection rate and low rate of false positives.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
