By Topic

Ontology based application level intrusion detection system by using Bayesian filter

Sign In

Cookies must be enabled to login.After enabling cookies , please use refresh or reload or ctrl+f5 on the browser for the login options.

Formats Non-Member Member
$31 $13
Learn how you can qualify for the best price for this item!
Become an IEEE Member or Subscribe to
IEEE Xplore for exclusive pricing!
close button

puzzle piece

IEEE membership options for an individual and IEEE Xplore subscriptions for an organization offer the most affordable access to essential journal articles, conference papers, standards, eBooks, and eLearning courses.

Learn more about:

IEEE membership

IEEE Xplore subscriptions

4 Author(s)
Razzaq, A. ; SEECS, Nat. Univ. of Sci. & Technol., Islamabad ; Ahmed, H.F. ; Hur, A. ; Haider, N.

Web application security is the major security concern for e-business and information sharing communities. Research showed that more than 75% attacks are being deployed at application layer and almost 90% applications are vulnerable to these attacks. Various security mechanisms in the form of signature base models, anomaly detection, scanner, firewall and intrusion detection has been proposed but ineffective to provide complete security solution at application level. These provide partial solutions are ineffective to provide defense against zero day attacks with low false positive rate. We have introduced a novel approach for effective defenses against the application level attacks. Our system use the Bayesian filter to mitigate the context base attacks which are easily eludes packet level inspection. Our intelligent system is ontology base which analyze the input semantically and capable to detect zero day attacks with negligible false positive rates. The ontology base system can be refined and extended over time. Ontology base system also help in focusing on specific portion of network packet where attack is possible, thus reduce the research space and avoid sequential search.

Published in:

Computer, Control and Communication, 2009. IC4 2009. 2nd International Conference on

Date of Conference:

17-18 Feb. 2009