| Paper Abstract and Keywords |
| Presentation |
2006-07-20 13:25
IDS for SSL Enncrypted Web Traffic Akira Yamada, Yutaka Miyake, Keisuke Takemori (KDDI Labs.) |
| Abstract |
(in Japanese) |
(See Japanese page) |
| (in English) |
The threat of attacks on web applications, such as SQL injection and cross site scripting, remains a serious problem. Though a Web Application Firewall (WAF) and an Intrusion Detection System (IDS) are part of the solution, they are ineffective for encrypted traffic. These approaches need to check the contents of traffic to detect malicious activities. So we propose a new intrusion detection system for SSL encrypted web accesses. The proposed system distinguishes encrypted pages by temporal ID, extracts certain features related to attacks, and estimates the probability of attacks. Employing sequential analysis, the proposed system can identify web access pages without preparations in advance, and extracts the features with less memory and calculation. We evaluate the accuracy of the distinction and false positive/negative rate using actual traffic of a web site and DARPA IDS evaluation data. |
| Keyword |
(in Japanese) |
(See Japanese page) |
| (in English) |
Intrusion Detection System / Web Aplication Firewall / Anomaly Detection / Encrypted Traffic / SSL/TLS / / / |
| Reference Info. |
IEICE Tech. Rep., vol. 106, pp. 167-173, July 2006. |
| Paper # |
|
| Date of Issue |
2006-07-13 (ISEC, SITE) |
| ISSN |
Print edition: ISSN 0913-5685 |
| Download PDF |
|
| Conference Information |
| Committee |
ISEC SITE IPSJ-CSEC |
| Conference Date |
2006-07-20 - 2006-07-21 |
| Place (in Japanese) |
(See Japanese page) |
| Place (in English) |
Okayama Univ. |
| Topics (in Japanese) |
(See Japanese page) |
| Topics (in English) |
|
| Paper Information |
| Registration To |
IPSJ-CSEC |
| Conference Code |
2006-07-ISEC-SITE-IPSJ-CSEC |
| Language |
Japanese |
| Title (in Japanese) |
(See Japanese page) |
| Sub Title (in Japanese) |
(See Japanese page) |
| Title (in English) |
IDS for SSL Enncrypted Web Traffic |
| Sub Title (in English) |
|
| Keyword(1) |
Intrusion Detection System |
| Keyword(2) |
Web Aplication Firewall |
| Keyword(3) |
Anomaly Detection |
| Keyword(4) |
Encrypted Traffic |
| Keyword(5) |
SSL/TLS |
| Keyword(6) |
|
| Keyword(7) |
|
| Keyword(8) |
|
| 1st Author's Name |
Akira Yamada |
| 1st Author's Affiliation |
KDDI R&D Labs. (KDDI Labs.) |
| 2nd Author's Name |
Yutaka Miyake |
| 2nd Author's Affiliation |
KDDI R&D Labs. (KDDI Labs.) |
| 3rd Author's Name |
Keisuke Takemori |
| 3rd Author's Affiliation |
KDDI R&D Labs. (KDDI Labs.) |
| 4th Author's Name |
|
| 4th Author's Affiliation |
() |
| 5th Author's Name |
|
| 5th Author's Affiliation |
() |
| 6th Author's Name |
|
| 6th Author's Affiliation |
() |
| 7th Author's Name |
|
| 7th Author's Affiliation |
() |
| 8th Author's Name |
|
| 8th Author's Affiliation |
() |
| 9th Author's Name |
|
| 9th Author's Affiliation |
() |
| 10th Author's Name |
|
| 10th Author's Affiliation |
() |
| 11th Author's Name |
|
| 11th Author's Affiliation |
() |
| 12th Author's Name |
|
| 12th Author's Affiliation |
() |
| 13th Author's Name |
|
| 13th Author's Affiliation |
() |
| 14th Author's Name |
|
| 14th Author's Affiliation |
() |
| 15th Author's Name |
|
| 15th Author's Affiliation |
() |
| 16th Author's Name |
|
| 16th Author's Affiliation |
() |
| 17th Author's Name |
|
| 17th Author's Affiliation |
() |
| 18th Author's Name |
|
| 18th Author's Affiliation |
() |
| 19th Author's Name |
|
| 19th Author's Affiliation |
() |
| 20th Author's Name |
|
| 20th Author's Affiliation |
() |
| 21st Author's Name |
|
| 21st Author's Affiliation |
() |
| 22nd Author's Name |
|
| 22nd Author's Affiliation |
() |
| 23rd Author's Name |
|
| 23rd Author's Affiliation |
() |
| 24th Author's Name |
|
| 24th Author's Affiliation |
() |
| 25th Author's Name |
|
| 25th Author's Affiliation |
() |
| 26th Author's Name |
/ / |
| 26th Author's Affiliation |
()
() |
| 27th Author's Name |
/ / |
| 27th Author's Affiliation |
()
() |
| 28th Author's Name |
/ / |
| 28th Author's Affiliation |
()
() |
| 29th Author's Name |
/ / |
| 29th Author's Affiliation |
()
() |
| 30th Author's Name |
/ / |
| 30th Author's Affiliation |
()
() |
| 31st Author's Name |
/ / |
| 31st Author's Affiliation |
()
() |
| 32nd Author's Name |
/ / |
| 32nd Author's Affiliation |
()
() |
| 33rd Author's Name |
/ / |
| 33rd Author's Affiliation |
()
() |
| 34th Author's Name |
/ / |
| 34th Author's Affiliation |
()
() |
| 35th Author's Name |
/ / |
| 35th Author's Affiliation |
()
() |
| 36th Author's Name |
/ / |
| 36th Author's Affiliation |
()
() |
| Speaker |
Author-1 |
| Date Time |
2006-07-20 13:25:00 |
| Presentation Time |
25 minutes |
| Registration for |
IPSJ-CSEC |
| Paper # |
ISEC2006-32, SITE2006-29 |
| Volume (vol) |
vol.106 |
| Number (no) |
no.175(ISEC), no.174(SITE) |
| Page |
pp.167-173 |
| #Pages |
7 |
| Date of Issue |
2006-07-13 (ISEC, SITE) |