Recently, the security threat on web application is increasing rapidly and especially open source web applications are becoming popular target of web server hacking. And more there was a worm which spread via web application vulnerabilities. Web application attack uses the vulnerability not in web server itself, but in structural, logical, and code errors. The majority of flaws in web applications are caused by absence of the user input validation. But, it is difficult to detect various abnormal user inputs by pattern matching method. In this paper, we propose the web application securing proxy based on profiling which can be constructed by learning usual normal activity. The proposed proxy system can detect and filter out attacker's abnormal requests via anomaly detection mechanism.
[1]
Christopher Krügel,et al.
A multi-model approach to the detection of web-based attacks
,
2005,
Comput. Networks.
[2]
D. T. Lee,et al.
Securing web application code by static analysis and runtime protection
,
2004,
WWW '04.
[3]
Sverre H. Huseby.
Common Security Problems in the Code of Dynamic Web Applications
,
2005
.
[4]
Michael Benedikt,et al.
VeriWeb: Automatically Testing Dynamic Web Sites
,
2002
.
[5]
Richard Sharp,et al.
Abstracting application-level web security
,
2002,
WWW.