Intrusion detection and prevention of web service attacks for software as a service: Fuzzy association rules vs fuzzy associative patterns

Chan, Gaik Yee; Chua, Fang-Fang; Lee, Chien‐Sing

doi:10.3233/jifs-169007

Cited by 9 publications

(3 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Chan, Gaik-Yee, Fang-Fang Chua, and Chien-Sing Lee [19] In this paper, we present our fuzzy association rule-based (FAR) and fuzzy associative pattern-based (FAP) intrusion detection and prevention (IDP) systems in defending against WS attacks at the SaaS level. Our experimental results have validated the capabilities of these two IDP systems in terms of detection of known attacks and prediction of new variant attacks with accuracy close to 100%.…”

Section: Literature Survey On Association Rule Miningmentioning

confidence: 99%

Association Rule Mining for Intrusion Detection System: A Survey

Selvamani¹,

Selvi²

2019

AJEAT

View full text Add to dashboard Cite

Many modern intrusion detection systems are based on data mining and database-centric architecture, where a number of data mining techniques have been found. Among the most popular techniques, association rule mining is one of the important topics in data mining research. This approach determines interesting relationships between large sets of data items. This technique was initially applied to the so-called market basket analysis, which aims at finding regularities in shopping behaviour of customers of supermarkets. In contrast to dataset for market basket analysis, which takes usually hundreds of attributes, network audit databases face tens of attributes. So the typical Apriori algorithm of association rule mining, which needs so many database scans, can be improved, dealing with such characteristics of transaction database. In this paper, a literature survey on the Association Rule Mining has carried out.

show abstract

Section: Literature Survey On Association Rule Miningmentioning

confidence: 99%

Association Rule Mining for Intrusion Detection System: A Survey

Selvamani¹,

Selvi²

2019

AJEAT

View full text Add to dashboard Cite

show abstract

“…Further, the paper proposes a penetration testing tool which simulates known XDoS attacks. Chan, Chua [11] presented a fuzzy association rule-based (FAR) and fuzzy associative pattern-based (FAP) intrusion detection and prevention (IDP) system to defend and prevent web service attacks. In this work, authors extend their examination on the use of fuzzy logic, associative pattern matching and association rules in helping for detection and prevention of existing signature-based attacks, as well as prediction of new anomaly-based attacks on a web service-based e-commerce application deployed over the Internet.…”

Section: Related Workmentioning

confidence: 99%

“…The evaluation results have demonstrated that the vulnerabilities in 66% of all tested parses in their default configurations. XDoS and DXDoS are found to be more destructive than the traditional DoS [11]. The purpose of these attacks is to consume the system resources by sending SOAP requests that contain malicious XML content.…”

Section: Introductionmentioning

confidence: 99%

Protection of XML-Based Denail-of-Service and Httpflooding Attacks in Web Services Using the Middleware Tool

Alasri¹,

Sulaiman

2018

IJET

View full text Add to dashboard Cite

A web service is defined as the method of communication between the web applications and the clients. Web services are very flexible and scalable as they are independent of both the hardware and software infrastructure. The lack of security protection offered by web services creates a gap which attackers can make use of. Web services are offered on the HyperText Transfer Protocol (HTTP) with Simple Object Access Protocol (SOAP) as the underlying infrastructure. Web services rely heavily on the Extended Mark-up Language (XML). Hence, web services are most vulnerable to attacks which use XML as the attack parameter. Recently, a new type of XML-based Denial-of-Service (XDoS) attacks has surfaced, which targets the web services. The purpose of these attacks is to consume the system resources by sending SOAP requests that contain malicious XML content. Unfortunately, these malicious requests go undetected underneath the network or transportation layers of the Transfer Control Protocol/Internet Protocol (TCP/IP), as they appear to be legitimate packets.In this paper, a middleware tool is proposed to provide real time detection and prevention of XDoS and HTTP flooding attacks in web service. This tool focuses on the attacks on the two layers of the Open System Interconnection (OSI) model, which are to detect and prevent XDoS attacks on the application layer and prevent flooding attacks at the Network layer.The rule-based approach is used to classify requests either as normal or malicious,in order to detect the XDoS attacks. The experimental results from the middleware tool have demonstrated that the rule-based technique has efficiently detected and prevented theattacks of XDoS and HTTP flooding attacks such as the oversized payload, coercive parsing and XML external entities close to real-time such as 0.006s over the web services. The middleware tool provides close to 100% service availability to normal request, hence protecting the web service against the attacks of XDoS and distributed XDoS (DXDoS).\

show abstract

Design Challenges and Assessment of Modern Web Applications Intrusion Detection and Prevention Systems (IDPS)

Sadqi¹,

Mekkaoui²

2021

Innovations in Smart Cities Applications Volume 4

View full text Add to dashboard Cite

Intrusion detection and prevention of web service attacks for software as a service: Fuzzy association rules vs fuzzy associative patterns

Cited by 9 publications

References 20 publications

Association Rule Mining for Intrusion Detection System: A Survey

Association Rule Mining for Intrusion Detection System: A Survey

Protection of XML-Based Denail-of-Service and Httpflooding Attacks in Web Services Using the Middleware Tool

Design Challenges and Assessment of Modern Web Applications Intrusion Detection and Prevention Systems (IDPS)

Contact Info

Product

Resources

About