DFA-based Algorithm for Detecting Web Attacks

doi:10.3969/j.issn.1000-3428.2010.13.052

Computer Engineering ›› 2010, Vol. 36 ›› Issue (13): 149-150,153. doi: 10.3969/j.issn.1000-3428.2010.13.052

• Networks and Communications • Previous Articles Next Articles

DFA-based Algorithm for Detecting Web Attacks

YANG Xiao-feng, SUN Ming-ming, HU Xue-lei

(Department of Computer, Nanjing University of Science and Technology, Nanjing 210094)

Online:2010-07-05 Published:2010-07-05

一种基于DFA的网络攻击检测算法

杨晓峰，孙明明，胡雪蕾

(南京理工大学计算系，南京 210094)

作者简介:杨晓峰(1982－)，男，博士研究生，主研方向：网络安全，模式识别；孙明明，讲师；胡雪蕾，副教授
基金资助:
江苏省“六大人才高峰”计划基金资助项目(07-E-015)

Abstract

Abstract: A DFA-based grammar model for detecting cyber attacks is proposed. Normal network behavior tends to follow regular grammar rules, while anomalies tend to deviate. The DFA-based model trained with normal network flow enables the efficient detection of cyber attacks against Web servers. The experiments based on real Web site data show its good detection performance.

Key words: network security, intrusion detection, grammar inference

摘要： 提出一种基于确定有限自动状态机(DFA)语法的网络攻击检测方法。正常的网络行为符合一定的语法规则，异常的行为会偏离正常的语法规则。通过对正常行为样本的学习得到基于DFA的语法，用学习得到的DFA模型检测针对网络服务器的应用层攻击。基于现实数据的对比实验表明该方法检测性能较好。

关键词: 网络安全, 入侵检测, 语法推断

CLC Number:

TP309

YANG Xiao-Feng, SUN Meng-Meng, HU Xue-Lei. DFA-based Algorithm for Detecting Web Attacks[J]. Computer Engineering, 2010, 36(13): 149-150,153.

杨晓峰, 孙明明, 胡雪蕾. 一种基于DFA的网络攻击检测算法[J]. 计算机工程, 2010, 36(13): 149-150,153.

/ / Recommend / Download Citations

URL: http://www.ecice06.com/EN/10.3969/j.issn.1000-3428.2010.13.052

http://www.ecice06.com/EN/Y2010/V36/I13/149

[1]	Changhong YU, Ya LU, Haixin WANG, Ming GAO. Traffic Classification Algorithm for IoT Device Based on Sliding Time Window [J]. Computer Engineering, 2023, 49(7): 259-268.
[2]	CHEN Zhonglei, YI Peng, CHEN Xiang, HU Tao. Real-time Anomaly Detection Framework via System Calls Based on Integrated Learning [J]. Computer Engineering, 2023, 49(6): 162-169,179.
[3]	SHI Lei, ZHANG Jitao, GAO Yufei, WEI Lin, TAO Yongcai. Intrusion Detection of Network Traffic Based on Transformer and BiLSTM [J]. Computer Engineering, 2023, 49(3): 29-36,57.
[4]	LIU Qiang, ZHANG Ying, ZHOU Weixiang, JIANG Xiantao, ZHOU Weina, ZHOU Mouguo. Adaptive Class Incremental Learning-Based IoT Intrusion Detection System [J]. Computer Engineering, 2023, 49(2): 169-174.
[5]	SUN Yangwei, QI Yong. Intrusion Detection Method for In-Vehicle CAN Based on Cluster Mixed Sampling and PSO-Stacking [J]. Computer Engineering, 2023, 49(1): 138-145.
[6]	LIU Jinshuo, ZHAN Daiyi, DENG Juan, WANG Lina. Network Intrusion Detection Based on Deep Neural Network and Federated Learning [J]. Computer Engineering, 2023, 49(1): 15-21,30.
[7]	DONG Weiyu, LI Haitao, WANG Ruimin, REN Huajuan, SUN Xuekai. Network Traffic Anomaly Detection Model Based on Stacked Convolutional Attention [J]. Computer Engineering, 2022, 48(9): 12-19.
[8]	JIN Haibo, ZHAO Xinyue. High-Reliability Intrusion Detection Algorithm Under Conformal Prediction Framework [J]. Computer Engineering, 2022, 48(7): 130-140.
[9]	SHENG Long, YUAN Lina, WU Nannan, JI Shaopei. Network Anomaly Detection Model Based on GSA and DE Optimizing Hybrid Kernel ELM [J]. Computer Engineering, 2022, 48(6): 146-153.
[10]	LI Jinguo, JIAO Xubin. Research on Intrusion Detection Model in Fog Computing Environment [J]. Computer Engineering, 2022, 48(5): 43-52.
[11]	CUI Jingyang, CHEN Zhenguo, TIAN Liqin, ZHANG Guanghua. Overview of User and Entity Behavior Analytics Technology Based on Machine Learning [J]. Computer Engineering, 2022, 48(2): 10-24.
[12]	SUN Pengyu, ZHANG Hengwei, TAN Jinglei, LI Chenwei, MA Junqiang, WANG Jindong. Network Security Defense Decision Method Based on Time Game [J]. Computer Engineering, 2022, 48(11): 145-151.
[13]	NI Siyuan, HU Hongchao, LIU Wenyan, LIANG Hao. Heterogeneous Cloud Resource Allocation Algorithm Based on Rotation Strategy [J]. Computer Engineering, 2021, 47(6): 44-51,67.
[14]	YANG Yanli, SONG Lipeng. Attack Graph Generation Method Integrating Social Network Threats [J]. Computer Engineering, 2021, 47(5): 104-116.
[15]	WANG Zi, WANG Zhihua, HAN Yong, JIN Jianlong, HUANG Tianming, ZHU Jiang. Research on Mulit-Layer Cooperative Defense Model Oriented to Network Security of Power System [J]. Computer Engineering, 2021, 47(12): 131-140.

Please choose a citation manager

Content to export

DFA-based Algorithm for Detecting Web Attacks

一种基于DFA的网络攻击检测算法

PDF

Knowledge

Cited

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments

模态框（Modal）标题

Please choose a citation manager

Content to export

DFA-based Algorithm for Detecting Web Attacks

一种基于DFA的网络攻击检测算法

PDF

Knowledge

Cited

Abstract

Cite this article

share this article

References

Related Articles 15

Recommended Articles

Metrics

Comments