A method and apparatus for excessive access rate detection
作者: Rami Mizrahi , Ofer Shezaf , Galit Efron-Natzan , Asaf Shimoni
DOI:
关键词: Logical security 、 Frame (networking) 、 Covert channel 、 Network Access Control 、 Computer security 、 Web application 、 Security management 、 Engineering 、 Specific time 、 Countermeasure (computer)
摘要: A system and method for protection of Web based applications are described. Anomalous traffic can be identified by comparing the to a profile acceptable user when interacting with application. Excessive access rates one type anomalous that is detected monitoring source determining whether number requests generates within specific time frame above threshold. The traffic, or security events, at individual computer networks communicated central manager. manager correlates events determine if there an enterprise wide threat. then communicate instructions so as provide solution Various responsive actions may taken in response detection excessive rate.
google.co.uk 参考文章(20)
Kevin Overcash, Yoram Zahavi, Doron Kolton, Netta Gavrieli, Rami Mizrahi, Asaf Wexler, Galit Efron (Nitzan), Kate Delikat, System and method of securing networks against applications threats ,(2006)
Jesse Lahtinen, Monitoring the flow of a data stream ,(2003)
Chengelpet Ramesh, Pritam Shah, Vamsidhar Valluri, Detecting network denial of service attacks ,(2003)
Jianguo Hu, Chung-Kuang Chou, Akio Sakamoto, Wani G. Tang, Database user behavior monitor system and method ,(2005)
Hemant Kumar Jain, Method and apparatus for rate based denial of service attack detection and prevention ,(2004)
William Reese Jacobs, David A. Arnovitz, Charles Watt, Mark Joseph Reed, Trusted gateway agent for web server programs ,(1996)
Ashley Anderson Brock, Kevin Thomas McClain, Nathaniel Wook Kim, Intrusion detection method and signature table ,(2001)
Charles Steven Lingafelt, Robert Barry Sisk, John Joseph McKenna, Method and apparatus for protecting a web server against vandals attacks without restricting legitimate access ,(2001)