WebGuard: Enhancing Intrusion Detection in Multi-tier Web Applications

In today's world web applications and internet services have become an integral part of daily life, enabling communication and the management of personal information from anywhere. In order to accommodate humungous increase in demand and data complexity, web applications are moved to multitier...

Full description

Saved in:
Bibliographic Details
Published in:International journal of computer applications 2014-01, Vol.95 (9), p.29-35
Main Authors: Patil, Asha U, Dixit, Arati M
Format: Article
Language:English
Subjects:
Algorithms
Applications programs
Computer information security
Demand
Intrusion
Noise levels
Query languages
Servers
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:In today's world web applications and internet services have become an integral part of daily life, enabling communication and the management of personal information from anywhere. In order to accommodate humungous increase in demand and data complexity, web applications are moved to multitier design. With the increase in popularity of web applications, these applications also become target of various attacks. To protect multitier web applications several intrusion detection systems (IDS) have been proposed. This paper focuses on development of WebGuard - designed to deploy the IDS at the front end web server as well as the back end data base server. WebGuard generates the containers for isolating user sessions using virtualization technique. This strategy mainly focuses on detecting SQL Injection, Privilege Escalation, Session Hijacking, Direct DB and Cross Site Scripting (XSS) Attacks in multi-tier web applications by using a pattern mapping algorithm. This paper also proposes a preventive system to secure web applications from XSS attacks.
ISSN:0975-8887
0975-8887
DOI:10.5120/16624-6477