Research On AC-BMP Algorithm And Its Application In WAF

Posted on:2018-07-24

Degree:Master

Type:Thesis

Country:China

Candidate:C Li

Full Text:PDF

GTID:2428330569485423

Subject:Computer technology

Abstract/Summary:

PDF Full Text Request

Most of the traditional network firewalls work in the OSI model of the network layer and transport layer,it can not understand the HTTP application layer protocol which is closely related to the Web application,and it can not prevent the Web attacks that are disguised as normal data,resulting in a variety of protection side leakage.Therefore,it is necessary to study how to accurately identify and effectively defend the attack of Web application layer,so as to ensure the security of Web application.Through the research and analysis,such as SQL injection,XSS,CSRF and other common Web-based vulnerabilities,to extract the characteristics of all kinds of attacks and the corresponding preventive measures,thus a Web Application Firewall(WAF)is designed and implemented.The WAF prepares and evaluates the important fields in the obtained HTTP packets by extracting and analyzing the incoming HTTP datagrams.It preprocesses the related fields of the HTTP packets before the detection,and prevents encoding such as Base64 and Unicode bypass means;The AC-BMP algorithm is obtained by improving the AC-BM algorithm,and it is applied to the WAF detection engine in order to improve the WAF's matching efficiency of the feature strings and the throughput of WAF,in view of the current web page tampering problem,we designed a transparent anti-tampering mechanism for Web server to ensure that users can still get the normal web content after tampering.In order to verify the attack detection and defense ability of the WAF based on AC-BMP,deploy the WAF on the WebGoat which is designed for Web vulnerability experiment,and use AppScan to scan WebGoat before and after the WAF deployment.The scanning results show that the WAF can detect and defend the common Web attacks and their respective variants,In addition,by comparing AC-BM algorithm and AC-BMP algorithm separately,it can be seen that AC-BMP algorithm has higher matching efficiency than AC-BM algorithm.By using more efficient AC-BMP algorithm,WAF's detection efficiency and throughput will be greatly improved.

Keywords/Search Tags:

Web Application Firewall, AC-BMP algorithm, Web anti-tampering

PDF Full Text Request

Related items

1	Design And Implementation Of Web Anti-Tampering System Based On LAMP
2	The Design And Implementation Of Web Application Firewall For E-banking
3	The Research And Application Of Cameras Tampering Detection Algorithms
4	Video Watermarking Algorithm For Anti-Frame Operations And Subtitle Tampering
5	Research And Implementation Of Android Application Software Protection System Based On Anti-reverse Tampering
6	Research On Protection Mehtods Of Android Software
7	Research On Algorithm Of Video Tampering Detection
8	State Detection And Anti-dos Attacks Firewall Design And Implementation
9	The Application Research Of Data Provenance Based On Blockchain
10	SFDD Construction Algorithm Design And Its Application In The Stateful Firewall Rule Set Comparison