An anomaly-driven reverse proxy for web applications

Proceedings of the ACM Symposium on Applied Computing

Volumn 1, Issue , 2006, Pages 361-368

  Valeur, Fredrik ^a   Vigna, Giovanni ^a   Kruegel, Christopher ^b   Kirda, Engin ^b  

^a UNIVERSITY OF CALIFORNIA   (United States)

^b VIENNA UNIVERSITY OF TECHNOLOGY   (Austria)

Author keywords

Anomaly detection; Data distribution; Web proxy

Indexed keywords

CODES (SYMBOLS); DATA PROCESSING; INFORMATION ANALYSIS; INFORMATION DISSEMINATION; INFORMATION RETRIEVAL; INTERNET;

ANOMALY DETECTION; DATA DISTRIBUTION; HTTP PROXY; SENSITIVE INFORMATION;

WORLD WIDE WEB;

EID: 33751022813     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/1141277.1141361     Document Type: Conference Paper

References (19)

1. P. Akritidis, K. Anagnostakis, and E. Markatos. Efficient Content-Based Detection of Zero-Day Worms. In Proceedings of the International Conference on Communications (ICC), Seoul, Korea, May 2005.
2. M. Almgren, H. Debar, and M. Dacier. A lightweight tool for detecting web server attacks. In Proceedings of the ISOC Symposium on Network and Distributed Systems Security, San Diego, CA, February 2000.
3. M. Almgren and U. Lindqvist. Application-Integrated Data Collection for Security Monitoring. In Proceedings of Recent Advances in Intrusion Detection (RAID), LNCS, pages 22-36, Davis, CA, October 2001. Springer.
4. R. Andersson. punBB - fast and lightweight PHP-powered discussion board. http://www.punbb.org/, 2005.
5. Breach Security. Breachgate. http://www.breach.com/, June 2005.
6. S. Chen, J. Xu, and E. Sezer. Non-Control-Data Attacks Are Realistic Threats. In Proceeding of the USENIX Security Symposium, Baltimore, MD, August 2005.
7. Common Vulnerabilities and Exposures. http://www.cve.mitre.org/, 2003.
8. th ACM Conference on Computer and Communication Security (CCS '03), pages 251-261, Washington, DC, October 2003. ACM Press.
9. myBloggie - PHP and mySQL Blog / Weblog script, http://mybloggie. mywebland.com/, 2005.
10. MySQL - The world's most popular open-source database, http://www.mysql.com/, 2005.
11. PHP: Hypertext Preprocessor, http://www.php.net/, 2005.
12. phPay - webshop or catalog based on SQL and PHP. http://phpay. sourceforge.net/, 2005.
13. K. Poulsen. Tower records settles charges over hack attacks, http : //www.securityfocus.com/news/8508, April 2004.
14. M. Roesch. Snort - Lightweight Intrusion Detection for Networks. In Proceedings of the USENIX LISA '99 Conference, Seattle, WA, November 1999.
15. K. A. S. Sidiroglou, P. Akritidis, K. Xinidis, E. Markatos, and A. D. Keromytis. Detecting Targeted Attacks Using Shadow Honeypots. In Proceeding of the USENIX Security Symposium, Baltimore, MD, August 2005.
16. E. Tombini, H. Debar, L. Mé, and M. Ducassé. A Serial Combination of Anomaly and Misuse IDSes Applied to HTTP Traffic. In Proceedings of the Annual Computer Security Aapplications Cconference (ACSAC), Tucson, AZ, December 2004.
17. T. Toth and C. Kruegel. Accurate Buffer Overflow Detection Via Abstract Payload Execution. In Proceedings of the Symposium on Recent Advances in Intrusion Detection (RAID), Zurich, Switzerland, October 2002.
18. Victoria's Secret Reveals Too Much. http://www.cbsnews.com/, October 2003.
19. G. Vigna, W. Robertson, V. Kher, and R. Kemmerer. A Stateful Intrusion Detection System for World-Wide Web Servers. In Proceedings of the Annual Computer Security Applications Conference (ACSAC 2003), pages 34-43, Las Vegas, NV, December 2003.