Title :
Quantification of Attackers Activities on Servers Running Web 2.0 Applications
Author :
Goseva-Popstojanova, Katerina ; Pantev, Risto ; Dimitrijevikj, Ana ; Miller, Brandon
Author_Institution :
Lane Dept. of Comput. Sci. & Electr. Eng., West Virginia Univ., Morgantown, WV, USA
Abstract :
The widespread use of Web applications, in conjunction with large number of vulnerabilities, makes them very attractive targets for malicious attackers. The increasing popularity of Web 2.0 applications, such as blogs, wikis, and social sites, makes Web servers even more attractive targets. In this paper we present empirical analysis of attackers activities based on data collected by two high-interaction honeypots which have typical three-tier architectures and include Web 2.0 applications. The contributions of our work include in-depth characterization of different types of malicious activities aimed at Web servers that deploy blog and wiki applications, as well as formal inferential statistical analysis of the malicious Web sessions.
Keywords :
Internet; security of data; software architecture; statistical analysis; user interfaces; Web 2.0 applications; Web servers; attackers activities; high-interaction honeypots; malicious Web sessions; wiki applications; Blogs; Databases; IP networks; Labeling; Operating systems; Web server;
Conference_Titel :
Network Computing and Applications (NCA), 2010 9th IEEE International Symposium on
Conference_Location :
Cambridge, MA
Print_ISBN :
978-1-4244-7628-2
DOI :
10.1109/NCA.2010.21
