This Article 
   
 Share 
   
 Bibliographic References 
   
 Add to: 
 
Digg
Furl
Spurl
Blink
Simpy
Google
Del.icio.us
Y!MyWeb
 
 Search 
   
2009 Fourth International Conference on Internet and Web Applications and Services
SS-IDS: Statistical Signature Based IDS
Venice/Mestre, Italy
May 24-May 28
ISBN: 978-0-7695-3613-2
Security of web servers has become a sensitive subject today. Prediction of normal and abnormal request is problematic due to large number of false alarms in many anomaly based Intrusion Detection Systems (IDS). SS-IDS derives automatically the parameter profiles from the analyzed data thereby generating the Statistical Signatures. Statistical Signatures are based on modeling of normal requests and their distribution value without explicit intervention. Several attributes are used to calculate the behavior of the legitimate request on the web server. SS-IDS is best suited for the newly installed web servers which doesn’t have large number of requests in the data set to train the IDS and can be used on top of currently used signature based IDS like SNORT. Experiments conducted on real data sets have shown high accuracy up to 99.98% for predicting valid request as valid and false positive rate ranges from 3.82-7.84%.
Citation:
Payas Gupta, Chedy Raïssi, Gerard Dray, Pascal Poncelet, Johan Brissaud, "SS-IDS: Statistical Signature Based IDS," iciw, pp.407-412, 2009 Fourth International Conference on Internet and Web Applications and Services, 2009
Usage of this product signifies your acceptance of the Terms of Use.