漏洞本体，用于web应用预测和分类攻击

2014 International Conference on Electronics, Communication and Computational Engineering (ICECCE) Pub Date : 2014-11-01 DOI:10.1109/ICECCE.2014.7086625

J. Shenbagam, P. Salini

{"title":"漏洞本体，用于web应用预测和分类攻击","authors":"J. Shenbagam, P. Salini","doi":"10.1109/ICECCE.2014.7086625","DOIUrl":null,"url":null,"abstract":"Web application security is the major security concern for e-business and information sharing communities. Research showed that more than 75% attacks are being deployed at application layer and almost 90% applications are vulnerable to attacks. Conventional methods of vulnerability and attack prevention and detection are ineffective to provide complete security solution at application level. In this paper, we propose an ontology based approach for effective defenses against the application level vulnerabilities and attacks. The proposed system is an ontology based attack prediction system which infers from the query of the user and classifies the web application attacks. It suggests methods for prevention and countermeasures for the inferred attacks. It also provides ranking and the priority in which the attacks can be encountered with a better defense.","PeriodicalId":223751,"journal":{"name":"2014 International Conference on Electronics, Communication and Computational Engineering (ICECCE)","volume":"255 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2014-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"Vulnerability Ontology for web applications to predict and classify attacks\",\"authors\":\"J. Shenbagam, P. Salini\",\"doi\":\"10.1109/ICECCE.2014.7086625\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Web application security is the major security concern for e-business and information sharing communities. Research showed that more than 75% attacks are being deployed at application layer and almost 90% applications are vulnerable to attacks. Conventional methods of vulnerability and attack prevention and detection are ineffective to provide complete security solution at application level. In this paper, we propose an ontology based approach for effective defenses against the application level vulnerabilities and attacks. The proposed system is an ontology based attack prediction system which infers from the query of the user and classifies the web application attacks. It suggests methods for prevention and countermeasures for the inferred attacks. It also provides ranking and the priority in which the attacks can be encountered with a better defense.\",\"PeriodicalId\":223751,\"journal\":{\"name\":\"2014 International Conference on Electronics, Communication and Computational Engineering (ICECCE)\",\"volume\":\"255 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2014-11-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2014 International Conference on Electronics, Communication and Computational Engineering (ICECCE)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICECCE.2014.7086625\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2014 International Conference on Electronics, Communication and Computational Engineering (ICECCE)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICECCE.2014.7086625","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

摘要

Web应用程序安全性是电子商务和信息共享社区关注的主要安全问题。研究表明，超过75%的攻击部署在应用层，几乎90%的应用程序容易受到攻击。传统的漏洞防范和攻击检测方法无法提供完整的应用层安全解决方案。本文提出了一种基于本体的应用层漏洞和攻击的有效防御方法。该系统是一种基于本体的攻击预测系统，通过对用户的查询进行推理，对web应用程序的攻击进行分类。提出了对推断攻击的预防方法和对策。它还提供了排序和优先级，以便更好地防御攻击。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Vulnerability Ontology for web applications to predict and classify attacks

Web application security is the major security concern for e-business and information sharing communities. Research showed that more than 75% attacks are being deployed at application layer and almost 90% applications are vulnerable to attacks. Conventional methods of vulnerability and attack prevention and detection are ineffective to provide complete security solution at application level. In this paper, we propose an ontology based approach for effective defenses against the application level vulnerabilities and attacks. The proposed system is an ontology based attack prediction system which infers from the query of the user and classifies the web application attacks. It suggests methods for prevention and countermeasures for the inferred attacks. It also provides ranking and the priority in which the attacks can be encountered with a better defense.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2014 International Conference on Electronics, Communication and Computational Engineering (ICECCE)

自引率

0.00%

发文量