Data processing for anomaly detection in web-based applications Public Deposited

http://ir.library.oregonstate.edu/concern/graduate_thesis_or_dissertations/s4655j910

Descriptions

Attribute NameValues
Creator
Abstract or Summary
  • Web applications are popular attack targets. Misuse detection systems use signature databases to detect known attacks. However, it is difficult to keep the database up to date with the rate of discovery of vulnerabilities. They also cannot detect zero-day attacks. By contrast, anomaly detection systems learn the normal behavior of the system and monitor its activity to detect any deviations from the normal. Any such deviations are flagged as anomalous. This thesis presents an anomaly detection system for web-based applications. The anomaly detection system monitors the attribute value pairs of successful HTTP requests received by webserver applications and automatically creates parameter profiles. It then uses these profiles to detect anomalies in the HTTP requests. Customized profiles help reduce the number of false positives. Automatic learning ensures that the system can be used with different kinds of web application environments, without the necessity for manual configuration. The results of the detection are also visualized, which enable the system administrator to quickly understand the state of the system and respond accordingly.
Resource Type
Date Available
Date Copyright
Date Issued
Degree Level
Degree Name
Degree Field
Degree Grantor
Commencement Year
Advisor
Committee Member
Academic Affiliation
Non-Academic Affiliation
Keyword
Subject
Rights Statement
Language
File Format
File Extent
  • 544127 bytes
Replaces
Additional Information
  • description.provenance : Approved for entry into archive by Linda Kathman(linda.kathman@oregonstate.edu) on 2008-03-25T17:37:40Z (GMT) No. of bitstreams: 1 GaarudapuramSriraghavan_Rajagopal_Masters_Thesis.pdf: 544127 bytes, checksum: d1d956f4452dcf63f786fa407fd93636 (MD5)
  • description.provenance : Made available in DSpace on 2008-03-25T17:37:40Z (GMT). No. of bitstreams: 1 GaarudapuramSriraghavan_Rajagopal_Masters_Thesis.pdf: 544127 bytes, checksum: d1d956f4452dcf63f786fa407fd93636 (MD5)
  • description.provenance : Submitted by Rajagopal Gaarudapuram Sriraghavan (gaarudar@onid.orst.edu) on 2008-03-19T23:05:24Z No. of bitstreams: 1 GaarudapuramSriraghavan_Rajagopal_Masters_Thesis.pdf: 544127 bytes, checksum: d1d956f4452dcf63f786fa407fd93636 (MD5)
  • description.provenance : Approved for entry into archive by Julie Kurtz(julie.kurtz@oregonstate.edu) on 2008-03-21T19:28:27Z (GMT) No. of bitstreams: 1 GaarudapuramSriraghavan_Rajagopal_Masters_Thesis.pdf: 544127 bytes, checksum: d1d956f4452dcf63f786fa407fd93636 (MD5)

Relationships

In Administrative Set:
Last modified: 08/07/2017

Downloadable Content

Download PDF
Citations:

EndNote | Zotero | Mendeley

Items