Evaluation of control flow traces in software applications for intrusion detection

2008 IEEE International Multitopic Conference Pub Date : 2008-12-01 DOI:10.1109/INMIC.2008.4777765

Imran Asad Gul, Nils Sommer, Matthias Rohr, Andre van Hoom, Wilhelm Hasselbring

引用次数: 6

Abstract

Software security has become an important requirement, particularly for systems that are publicly accessible through the Internet. Such systems can be equipped with intrusion detection systems to uncover security breaches. In this paper, we present a novel application-level intrusion detection approach. A normal behavior profile is created from application-internal control flow in terms of operation execution traces. Anomalous control flows indicative for intrusion attempts are detected by continuously monitoring and analyzing the software system. A case study demonstrates the intrusion detection approach's applicability in the context of a multi-user Java Web application.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

入侵检测软件应用中控制流轨迹的评估

软件安全已经成为一个重要的要求，特别是对于那些可以通过Internet公开访问的系统。这种系统可以配备入侵检测系统，以发现安全漏洞。本文提出了一种新的应用层入侵检测方法。根据操作执行跟踪，从应用程序内部控制流创建正常的行为概要文件。通过对软件系统的持续监测和分析，检测出提示入侵企图的异常控制流。一个案例研究演示了入侵检测方法在多用户Java Web应用程序上下文中的适用性。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2008 IEEE International Multitopic Conference

自引率

0.00%

发文量

期刊最新文献

Impact of nano particles on semiconductor manufacturing Graphical modeling and optimization of air interface standards for Software Defined Radios Per Packet Authentication for IEEE 802.11 wireless LAN An intelligent agri-information dissemination framework: An e-Government Characterization of waveguide slots using full wave EM analysis software HFSS