TY - GEN
T1 - Improving the quality of protection of web application firewalls by a simplified taxonomy of web attacks
AU - Han, Yi
AU - Sakai, Akihiro
AU - Hori, Yoshiaki
AU - Sakurai, Kouichi
PY - 2009/7/13
Y1 - 2009/7/13
N2 - Nowadays, with over 70% of attacks carried out over the web application level, organizations need all the help they can get in making their system secure. Web Application Firewalls (WAFs) are among the tools that are commonly used for the prevention of Web attacks. However, the WAFs provide very little protection on their own. In order to become useful, they must be configured with rules. Unfortunately, the rule configuration process is not easy and error-prone, thus the quality of protection(QoP) of WAFs is still behind our expectations. In this paper, we investigate the current WAFs and point out some of their problems regarding about the poor QoP. We then analyze the origins of these problems and propose two decision modules, the attack-decision module and priority-decision module based on a proposed simplified taxonomy of web attacks which are helpful for improving the QoP of WAFs. Finally, we conclude our work and show future interests to extend our modules to IDS systems.
AB - Nowadays, with over 70% of attacks carried out over the web application level, organizations need all the help they can get in making their system secure. Web Application Firewalls (WAFs) are among the tools that are commonly used for the prevention of Web attacks. However, the WAFs provide very little protection on their own. In order to become useful, they must be configured with rules. Unfortunately, the rule configuration process is not easy and error-prone, thus the quality of protection(QoP) of WAFs is still behind our expectations. In this paper, we investigate the current WAFs and point out some of their problems regarding about the poor QoP. We then analyze the origins of these problems and propose two decision modules, the attack-decision module and priority-decision module based on a proposed simplified taxonomy of web attacks which are helpful for improving the QoP of WAFs. Finally, we conclude our work and show future interests to extend our modules to IDS systems.
UR - http://www.scopus.com/inward/record.url?scp=67649958689&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=67649958689&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-02633-1_14
DO - 10.1007/978-3-642-02633-1_14
M3 - Conference contribution
AN - SCOPUS:67649958689
SN - 9783642026324
T3 - Communications in Computer and Information Science
SP - 105
EP - 110
BT - Advances in Information Security and Its Application
A2 - Park, Jong Hyuk
A2 - Zhan, Justin
A2 - Lee, Changhoon
A2 - Wang, Guilin
A2 - Kim, Tai-hoon
A2 - Yeo, Sang-Soo
ER -