Abstract
Intrusion detection systems are widely used security tools to detect cyber-attacks and malicious activities in computer systems and networks. Hypertext Transport Protocol (HTTP) is used for new applications without much interference. In this paper, we focus on intrusion detection of HTTP traffic by applying pattern recognition techniques using our Geometrical Structure Anomaly Detection (GSAD) model. Experimental results reveal that features extracted from HTTP request using GSAD model can be used to distinguish anomalous traffic from normal traffic, and attacks carried out over HTTP traffic can be identified. We evaluate and compare our results with the results of PAYL intrusion detection systems for the test of DARPA 1999 IDS data set. The results show GSAD has high detection rates and low false positive rates.
| Original language | English |
|---|---|
| Title of host publication | Proceedings of the 6th International Wireless Communications and Mobile Computing Conference: IWCMC 2010: 28 June - 2 July 2010, Caen, France |
| Publisher | ACM |
| Pages | 1193-1197 |
| Number of pages | 5 |
| ISBN (Print) | 9781450300629 |
| DOIs | |
| Publication status | Published - 2010 |
| Event | International Wireless Communications & Mobile Computing Conference - Duration: 28 Jun 2010 → … |
Conference
| Conference | International Wireless Communications & Mobile Computing Conference |
|---|---|
| Period | 28/06/10 → … |