Title :
Detection of Parameter Manipulation Using Global Sequence Alignment
Author :
Park, Jae-Chul ; Noh, Bong-Nam
Author_Institution :
Interdisciplinary Program of Inf. Security, Chonnan Nat. Univ., Gwangju
Abstract :
Web application parameter contains identical structure and value. As a result, parameter features repetition of identical variable name and keyword. The characteristic of the keywords can be represented by being extracted from parameter. In order to measure the identity between two sequences, genome alignment which has been much studied in bioinformatics can be applied. We extract keyword sequences from the parameter of the Web application considering the structural aspects of the application and apply the genome alignment method to measuring the identity between two parameter sequences in order to detect the parameter manipulation. An experiment shows that our method detects parameter manipulation and, moreover, previously unknown attacks as well as variations of known attacks
Keywords :
Internet; knowledge acquisition; security of data; Web application; genome alignment method; global sequence alignment; keyword sequence extraction; parameter manipulation; Amino acids; Authentication; Authorization; Availability; Bioinformatics; Genomics; Information security; National security; Uniform resource locators; Web server;
Conference_Titel :
Next Generation Web Services Practices, 2006. NWeSP 2006. International Conference on
Conference_Location :
Seoul
Print_ISBN :
0-7695-2664-0
DOI :
10.1109/NWESP.2006.14
