Citation

Chan, Gaik Yee and Chua, Fang Fang and Lee, Chien Sing (2016) Fuzzy association rules vs fuzzy associative patterns in defending against web service attacks. In: 2015 12th International Conference on Fuzzy Systems and Knowledge Discovery (FSKD). IEEE, pp. 524-529. ISBN 978-1-4673-7682-2

Text 105.pdf Restricted to Repository staff only Download (2MB)

Abstract

This paper presents a fuzzy association rule-based intrusion detection and prevention (FAR IDP) system that is implemented within an e-commerce Web service-based application. This system compares the effectiveness and efficiency of using 20 fuzzy association rules compared to 366 fuzzy associative patterns (FAP) to determine whether to definitely grant access to normal transaction, probably deny access for suspicious transaction or certainly deny access to transactions which may contain malicious inputs or XML content. Experimental results from our FAR IDP system have demonstrated that both rules-based and pattern-based algorithms are able to detect, prevent and predict Web service attacks such as SQL injection, XML injection, DoS and SOAP oversized close to real-time, with detection accuracy of not lower than 99%. There is also a slight difference in terms of time; the transaction time for FAP is almost doubled that of FAR's in ms. Additionally, with a transaction time of less than 0.25ms and a detection accuracy of greater than 99%, our FAR IDP has outperformed many other fuzzy and Web service-based IDP systems.

Item Type:	Book Section
Uncontrolled Keywords:	Web services, fuzzy association rules, intrusion detection, intrusion prevention
Subjects:	Q Science > QA Mathematics > QA1-43 General
Divisions:	Faculty of Computing and Informatics (FCI)
Depositing User:	Ms Rosnani Abd Wahab
Date Deposited:	29 Jan 2018 15:58
Last Modified:	29 Jan 2018 15:58
URII:	http://shdl.mmu.edu.my/id/eprint/6652

Downloads

Edit (login required)