PeANFIS-FARM for discovering rules for XML intrusion detection and prevention
The Internet and XML-based Web Services (WS) have revolutionised the Information Technology industry. Increasing number of software applications, especially Business Intelligence (BI) or e-commerce applications are built on this Internet and Web service-enabled platform. Consequently, the Applicat...
Saved in:
| Main Author: | |
|---|---|
| Format: | Thesis |
| Published: |
2012
|
| Subjects: | |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Summary: | The Internet and XML-based Web Services (WS) have revolutionised the Information Technology industry. Increasing number of software applications, especially Business Intelligence (BI) or e-commerce applications are built on this Internet and Web service-enabled platform. Consequently, the Application Layer is open to various types of XML-related threats. Although active research has been ongoing in host-based and network-based intrusion detection (ID) and intrusion prevention (IP) areas, they are not adequate to address the problems or countermeasure the attacks occurring at the Application Layer. These ID/IP systems merely detect attacks by observing various network and host’s activities, but do not address XML-related attacks. Even though basic standards such as XML Digital Signature and XML Encryption exist, they are still not adequate to address the security threats and vulnerabilities completely. For example, XML Encryption can mask message content being inspected, thus concealing probable attacks such as oversized payload, coercive parsing or XML injection. In view of the XML-related security threats, this study has developed an adaptive ID/IP framework incorporated with predictive fuzzy models that validate inputs and SOAP size to counter XML-related attacks. |
|---|