{"title":"Ontology based intrusion detection system for web application security","authors":"H. A. Karande, Shyam S. Gupta","doi":"10.1109/ICCN.2015.44","DOIUrl":null,"url":null,"abstract":"Effective web security practices are key to the success of the Semantic Web. Security measures of authorization, integrity and privacy are to be catered for storage and maintenance of data on the web. Ontology is being highly recommended for security of web services. Many security parameters are being embedded in OWL-S. Security models mapped to ontology seem to be very effective. This paper demonstrates ontology based intrusion detection system for web application security. Context capture of information from links and scripts is the premise of the proposed system. The proposed IDS ontological model detects protocol specific attacks as well identifies malicious scripts. This model identifies types of attacks and vulnerabilities therein. A TCP dump of data on LAN was acquired and evaluated against KDD99 intrusion detection predictor model dataset. Ontology model was designed using Protégé. Our ontology model establishes semantic relationship between attacks and networks. The experimental results showed our model has improved detection rate and low rate of false positives.","PeriodicalId":431743,"journal":{"name":"2015 International Conference on Communication Networks (ICCN)","volume":"29 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2015 International Conference on Communication Networks (ICCN)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICCN.2015.44","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 9
Abstract
Effective web security practices are key to the success of the Semantic Web. Security measures of authorization, integrity and privacy are to be catered for storage and maintenance of data on the web. Ontology is being highly recommended for security of web services. Many security parameters are being embedded in OWL-S. Security models mapped to ontology seem to be very effective. This paper demonstrates ontology based intrusion detection system for web application security. Context capture of information from links and scripts is the premise of the proposed system. The proposed IDS ontological model detects protocol specific attacks as well identifies malicious scripts. This model identifies types of attacks and vulnerabilities therein. A TCP dump of data on LAN was acquired and evaluated against KDD99 intrusion detection predictor model dataset. Ontology model was designed using Protégé. Our ontology model establishes semantic relationship between attacks and networks. The experimental results showed our model has improved detection rate and low rate of false positives.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
