english Icono del idioma   español Icono del idioma  

Por favor, use este identificador para citar o enlazar este ítem: https://hdl.handle.net/20.500.12008/29281 Cómo citar
Título: Exploring the application of process mining techniques to improve web application security
Autor: Bruno, Marcelo
Ibañez, Pablo
Techera, Tamara
Calegari, Daniel
Betarte, Gustavo
Tipo: Preprint
Palabras clave: Security, Web applications, Process mining, Web application firewall, ModSecurity, ProM
Fecha de publicación: 2021
Resumen: Web applications are permanently being exposed to attacks that exploit their vulnerabilities. To detect and prevent misuse of the functionality provided by an application, it has become necessary to develop techniques that help discern between a valid user of the system and a malicious agent. In recent years, a technology that has been widely deployed to provide automated and non-invasive support for detecting web application attacks is Web Application Firewalls. In this work, we put forward and discuss the application of Process Mining techniques to detect deviations from the expected behavior of web applications. The objects of behavior analysis are logs generated by a widely deployed WAF called ModSecurity. We discuss experiments we have carried out applying our mining method on the well-known e-commerce platform Magento and using the ProM tool for the execution of the process mining techniques.
Descripción: CLEI 21, Conferencia Latinoamericana de Informática, San José, Costa Rica, 25 al 29 de octubre de 2021.
Editorial: Centro Latinoamericano de Estudios de Informática
Citación: Bruno, M., Ibañez, P., Techera, T., y otros. Exploring the application of process mining techniques to improve web application security [Preprint]. Publicado en : CLEI 21, Conferencia Latinoamericana de Informática, San José, Costa Rica, 25 al 29 de octubre de 2021.
Licencia: Licencia Creative Commons Atribución - No Comercial - Sin Derivadas (CC - By-NC-ND 4.0)
Aparece en las colecciones: Reportes Técnicos - Instituto de Computación

Ficheros en este ítem:
Fichero Descripción Tamaño Formato   
BITCB21.pdfPreprint1,4 MBAdobe PDFVisualizar/Abrir


Este ítem está sujeto a una licencia Creative Commons Licencia Creative Commons Creative Commons