Á¤º¸°úÇÐȸ³í¹®Áö (Journal of KIISE)
Current Result Document :
ÇѱÛÁ¦¸ñ(Korean Title) |
Convolutional Neural Network¸¦ ÀÌ¿ëÇÑ À¥ ¾îÇø®ÄÉÀÌ¼Ç °ø°Ý ŽÁö ±â¹ý |
¿µ¹®Á¦¸ñ(English Title) |
Web Application Attack Detection Scheme Using Convolutional Neural Networks |
ÀúÀÚ(Author) |
¼¿µ¿õ
±è¸íÁø
¹Ú½Â¿µ
À̼®¿ì
Yeongung Seo
Myungjin Kim
Seungyoung Park
Seokwoo Lee
|
¿ø¹®¼ö·Ïó(Citation) |
VOL 45 NO. 07 PP. 0744 ~ 0754 (2018. 07) |
Çѱ۳»¿ë (Korean Abstract) |
À¥ ¾îÇø®ÄÉÀÌ¼Ç °ø°ÝÀÌ ±Þ°ÝÇÏ°Ô ´Ã¸é¼ ±âÁ¸ÀÇ ±â¹ýµé¸¸À¸·Î´Â À̸¦ ŽÁöÇÏ´Â °ÍÀÌ ÇÑ°è°¡ ÀÖ¾î, ±â°èÇнÀ ±â¹ÝÀÇ Å½Áö ±â¹ýÀÌ ¿¬±¸µÇ±â ½ÃÀÛÇÏ¿´´Ù. ±â°èÇнÀÀ» È°¿ëÇÑ ±âÁ¸ ±â¹ýÀº °ø°Ý ŽÁö¸¦ À§ÇØ ÀûÀýÇÑ Æ¯Â¡(feature)À» ¼±Á¤ÇØ¾ß ÇÏ´Â ¾î·Á¿òÀÌ ÀÖÀ¸¸ç, »õ·Î¿î °ø°Ý ÆÐÅÏÀÌ µîÀåÇÒ °æ¿ì ÀÌ¿¡ ÀûÇÕÇϵµ·Ï Ư¡À» Àç¼±Á¤ÇØ¾ß ÇÒ °æ¿ìµµ ¹ß»ýÇÑ´Ù. º» ³í¹®¿¡¼´Â HTTP Æ®·¡ÇÈÀ» ±¸¼ºÇÏ´Â ÀÔ·ÂÀÌ Çã¿ëµÇ´Â ¹®ÀÚ¿¡ ´ëÇÑ Á¦ÇÑ ¾øÀÌ ¹®ÀÚ ´ÜÀ§·Î 16Áø¼ö º¯È¯ÇÑ ÈÄ À̹ÌÁöÈÇÏ°í, À̸¦ ÀÔ·ÂÀ¸·Î ÇÏ´Â convolutional neural networkÀ» ÅëÇØ À¥ ¾îÇø®ÄÉÀÌ¼Ç °ø°ÝÀ» ŽÁöÇÏ´Â ±â¹ýÀ» Á¦¾ÈÇÑ´Ù. Á¦¾È ±â¹ýÀº º°µµÀÇ Æ¯Â¡ ¼±Á¤ ¾øÀÌ ÁöµµÇнÀÀ» ÅëÇØ À̹ÌÁöÈ µÈ HTTP Æ®·¡ÇÈÀ» ÇнÀÇϸç, ±âÁ¸ÀÇ ±â°èÇнÀ ±â¹ýº¸´Ù ÃÖ´ë 84.4%±îÁö °ø°Ý ŽÁö ¿À·ùÀ² ¼º´ÉÀ» Çâ»óÇÒ ¼ö ÀÖÀ½À» º¸¿´´Ù.
|
¿µ¹®³»¿ë (English Abstract) |
Because rates of web application attacks are rapidly increasing, web application attack detection schemes using machine learning have recently become of interest. Existing schemes, however, require the selection of a suitable set of features representing the characteristics of expected attacks, and this set of features needs to be adjusted every time a new type of attack is discovered. In this paper, we propose a web application attack detection scheme employing a convolutional neural network (CNN) without the need to select any features in advance. Specifically, the CNN is trained in a supervised manner with images transformed from hexadecimally converted characters in HTTP traffic, without any restriction in the input characters used. Our experimental results show that the proposed scheme improves detection error rate performance by up to 84.4% over existing schemes.
|
Å°¿öµå(Keyword) |
ÄÁº¼·ç¼Ç ½Å°æ¸Á
ÁöµµÇнÀ
SQL ÀÎÁ§¼Ç
Å©·Î½º »çÀÌÆ® ½ºÅ©¸³ÆÃ
À¥ ¾îÇø®ÄÉÀ̼Ç
convolutional neural network
supervised learning
SQL injection
cross site scripting
web application
|
ÆÄÀÏ÷ºÎ |
PDF ´Ù¿î·Îµå
|