Web Server Attack Categorization based on Root Causes and Their Locations

	This Article
	Subscribers, please Login Purchase article: $19 PDF IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Jeongseok Seo Articles by Han-Sung Kim Articles by Sanghyun Cho Articles by Sungdeok Cha

International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1

Las Vegas, Nevada

April 05-April 07

ISBN: 0-7695-2108-8

	ASCII Text	x
	Jeongseok Seo, Han-Sung Kim, Sanghyun Cho, Sungdeok Cha, "Web Server Attack Categorization based on Root Causes and Their Locations," Information Technology: Coding and Computing, International Conference on, vol. 1, pp. 90, International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1, 2004.

	BibTex	x
	@article{ 10.1109/ITCC.2004.1286431, author = {Jeongseok Seo and Han-Sung Kim and Sanghyun Cho and Sungdeok Cha}, title = {Web Server Attack Categorization based on Root Causes and Their Locations}, journal ={Information Technology: Coding and Computing, International Conference on}, volume = {1}, year = {2004}, isbn = {0-7695-2108-8}, pages = {90}, doi = {http://doi.ieeecomputersociety.org/10.1109/ITCC.2004.1286431}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Information Technology: Coding and Computing, International Conference on TI - Web Server Attack Categorization based on Root Causes and Their Locations SN - 0-7695-2108-8 SP EP A1 - Jeongseok Seo, A1 - Han-Sung Kim, A1 - Sanghyun Cho, A1 - Sungdeok Cha, PY - 2004 KW - null VL - 1 JA - Information Technology: Coding and Computing, International Conference on ER -

Jeongseok Seo, KAIST and AITrc/IIRTRC/SPIC

Han-Sung Kim, KAIST and AITrc/IIRTRC/SPIC

Sanghyun Cho, KAIST and AITrc/IIRTRC/SPIC

Sungdeok Cha, KAIST and AITrc/IIRTRC/SPIC

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ITCC.2004.1286431

Frequency of attacks on web services and resulting damage continue to grow as web services become popular. Unfortunately, existing signature-based intrusion detection techniques are inadequate in providing reasonable degree of web security. Web attacks are diverse in nature, and typical web architecture consists of complex and hierarchically organized components. Because attack strategies often vary depending on the web contents, it is impossible to develop fixed patterns capturing unknown attacks. Protection mechanisms such as anomaly-based intrusion detection and application-level IDS, tailored to web services, are needed to detect web attacks. The first step in developing web application IDS is to analyze and categorize possible web attacks and vulnerabilities. In this paper, we classify web attacks by analyzing the root causes and the locations where they occur. This research is useful in developing web IDS modules, tracking emerging trends on web attacks, and testing web applications against potential vulnerabilities.

Citation:

Jeongseok Seo, Han-Sung Kim, Sanghyun Cho, Sungdeok Cha, "Web Server Attack Categorization based on Root Causes and Their Locations," itcc, vol. 1, pp.90, International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 1, 2004

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.