A Survey on Deception Techniques for Securing Web Application

Mohd Alif Erfan Mohd Efendi, Zul Azri Ibrahim, Md Nabil Ahmad Zawawi, Fiza Abdul Rahim, Nor'Azuwa Muhamad Pahri, Anuar Ismail

Research output: Chapter in Book/Report/Conference proceedingConference contribution

1 Citation (Scopus)

Abstract

Many web applications are developed to handle important and critical tasks, which may attract a large number of attackers. With various types of attacks, there is no finite solution to mitigate it's all. Deception technique is one of the area that can be explore to defend against web attack. Deception can detect, analyzed and defend against advanced web attack that cannot be done using existing anomaly-based detection and prevention techniques. Current deceptive solutions tend to be doubtful to application-layer protocols and lack of study on how deception can be applied at this level. Thus, those solutions can't properly be used to protect against application-layer attacks that are integrally based on elements from the application-layer itself. This research aims to study possible usages of deception techniques that could be incorporated in the context of application-layer traffic of web applications with the purpose of detecting web application attacks. The comparative results from this study will be used to identify which deception techniques are suitable to provide a useful layer of protection for a web application.

Original languageEnglish
Title of host publicationProceedings - 5th IEEE International Conference on Big Data Security on Cloud, BigDataSecurity 2019, 5th IEEE International Conference on High Performance and Smart Computing, HPSC 2019 and 4th IEEE International Conference on Intelligent Data and Security, IDS 2019
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages328-331
Number of pages4
ISBN (Electronic)9781728100067
DOIs
Publication statusPublished - 01 May 2019
Event5th IEEE International Conference on Big Data Security on Cloud, 5th IEEE International Conference on High Performance and Smart Computing and 4th IEEE International Conference on Intelligent Data and Security, BigDataSecurity/HPSC/IDS 2019 - Washington, United States
Duration: 27 May 201929 May 2019

Publication series

NameProceedings - 5th IEEE International Conference on Big Data Security on Cloud, BigDataSecurity 2019, 5th IEEE International Conference on High Performance and Smart Computing, HPSC 2019 and 4th IEEE International Conference on Intelligent Data and Security, IDS 2019

Conference

Conference5th IEEE International Conference on Big Data Security on Cloud, 5th IEEE International Conference on High Performance and Smart Computing and 4th IEEE International Conference on Intelligent Data and Security, BigDataSecurity/HPSC/IDS 2019
CountryUnited States
CityWashington
Period27/05/1929/05/19

All Science Journal Classification (ASJC) codes

  • Artificial Intelligence
  • Computer Networks and Communications
  • Hardware and Architecture
  • Information Systems and Management
  • Safety, Risk, Reliability and Quality

Fingerprint Dive into the research topics of 'A Survey on Deception Techniques for Securing Web Application'. Together they form a unique fingerprint.

  • Cite this

    Mohd Efendi, M. A. E., Ibrahim, Z. A., Ahmad Zawawi, M. N., Abdul Rahim, F., Muhamad Pahri, NA., & Ismail, A. (2019). A Survey on Deception Techniques for Securing Web Application. In Proceedings - 5th IEEE International Conference on Big Data Security on Cloud, BigDataSecurity 2019, 5th IEEE International Conference on High Performance and Smart Computing, HPSC 2019 and 4th IEEE International Conference on Intelligent Data and Security, IDS 2019 (pp. 328-331). [8819492] (Proceedings - 5th IEEE International Conference on Big Data Security on Cloud, BigDataSecurity 2019, 5th IEEE International Conference on High Performance and Smart Computing, HPSC 2019 and 4th IEEE International Conference on Intelligent Data and Security, IDS 2019). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/BigDataSecurity-HPSC-IDS.2019.00066