A detection scheme for flooding attack on application layer based on semantic concept

With the development of the Internet, application programs on the web page become widespread. Information appearing on the web page has evolved from static presentation to dynamic presentation and even being interactive with the users. Some malicious users employ malicious browsing behaviors, such as flooding attack, to cause waste of resources and bandwidth of the host for the web page. Since the advent of cloud computing technology, flooding attack on the application layer no longer has the ability to cause complete denial of service to a Web server. But resources, such as bandwidth, CPU time, and memory, on the clouds mean cost, and any waste of the resource will generate extra and unnecessary cost. Therefore, in this paper we analyze native modules or components of the PHP dynamic pages and find the amount of system resources consumed by parts of the native module or the whole module. From above analysis, we propose a method based on semantic concept to formulate rules to identify malicious browsing behaviors in order to improve performance of Web services and to slice the cost.