Pattern Recognition Approach for Anomaly Detection of Web-based Attacks

Jamdagni, A; Tan, T; Liu, R; Nanda, P; He, S

Pattern Recognition Approach for Anomaly Detection of Web-based Attacks

Jamdagni, A Tan, T Liu, R

Nanda, P

He, S

Permalink

Publisher:: CSIRO
Publication Type:: Conference Proceeding
Citation:: The Seventh Annual CSIRO ICT Centre Science and Engineering Conference, 2010, pp. 1 - 2
Issue Date:: 2010-01

Open Access

Copyright Clearance Process

Recently Added
In Progress
Open Access

This item is open access.

Adobe PDF

Download full textAdobe PDF (410.05 kB)

View statistics

Full metadata record

Field	Value	Language
dc.contributor.author	Jamdagni, A	en_US
dc.contributor.author	Tan, T	en_US
dc.contributor.author	Liu, R https://orcid.org/0000-0001-7001-6305	en_US
dc.contributor.author	Nanda, P https://orcid.org/0000-0002-5748-155X	en_US
dc.contributor.author	He, S https://orcid.org/0000-0001-8962-540X	en_US
dc.contributor.editor	Trevor Bird	en_US
dc.date	2010-11-10	en_US
dc.date.issued	2010-01	en_US
dc.identifier.citation	The Seventh Annual CSIRO ICT Centre Science and Engineering Conference, 2010, pp. 1 - 2	en_US
dc.identifier.isbn	9780643101647	en_US
dc.identifier.uri	http://hdl.handle.net/10453/16304
dc.description.abstract	The universal use of the Internet has made it more difficult to achieve high security. Attackers target web applications instead of Telnet ports. Cyber-attacks and breaches of information security are increasing in frequency. The goal of Intrusion Detection Systems (IDSs) is to monitor network traffic and detect web-based attacks. Common IDSs are either signature based or anomaly based. Signature based IDS is unable to detect novel attack (Le., zero-day) or polymorphic attacks, until the signature database is updated. On the other hand, an anomaly-based IDS can detect new attacks and polymorphic attacks. However, anomaly based system has a relatively high number of false positives.	en_US
dc.publisher	CSIRO	en_US
dc.relation.ispartof	The Seventh Annual CSIRO ICT Centre Science and Engineering Conference	en_US
dc.relation.ispartof	Annual CSIRO ICT Centre Science and Engineering Conference	en_US
dc.title	Pattern Recognition Approach for Anomaly Detection of Web-based Attacks	en_US
dc.type	Conference Proceeding
utslib.location	CSIRO, NSW, Australia	en_US
utslib.location.activity	Australian Technology Park, Eveleigh, NSW, Australia	en_US
utslib.for	0801 Artificial Intelligence and Image Processing	en_US
dc.location.activity	Australian Technology Park, Eveleigh, NSW, Australia	en_US
pubs.embargo.period	Not known	en_US
pubs.organisational-group	/University of Technology Sydney
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology
pubs.organisational-group	/University of Technology Sydney/Faculty of Engineering and Information Technology/School of Electrical and Data Engineering
pubs.organisational-group	/University of Technology Sydney/Strength - CRIN - Realtime Information Networks
pubs.organisational-group	/University of Technology Sydney/Strength - GBDTC - Global Big Data Technologies
pubs.organisational-group	/University of Technology Sydney/Strength - INEXT - Innovation in IT Services and Applications
utslib.copyright.status	open_access
pubs.consider-herdc	true	en_US
pubs.place-of-publication	CSIRO, NSW, Australia	en_US
pubs.start-date	2010-11-10	en_US

Abstract:

The universal use of the Internet has made it more difficult to achieve high security. Attackers target web applications instead of Telnet ports. Cyber-attacks and breaches of information security are increasing in frequency. The goal of Intrusion Detection Systems (IDSs) is to monitor network traffic and detect web-based attacks. Common IDSs are either signature based or anomaly based. Signature based IDS is unable to detect novel attack (Le., zero-day) or polymorphic attacks, until the signature database is updated. On the other hand, an anomaly-based IDS can detect new attacks and polymorphic attacks. However, anomaly based system has a relatively high number of false positives.

Please use this identifier to cite or link to this item:

http://hdl.handle.net/10453/16304