english Icono del idioma   español Icono del idioma  

Please use this identifier to cite or link to this item: https://hdl.handle.net/20.500.12008/29281 How to cite
Title: Exploring the application of process mining techniques to improve web application security
Authors: Bruno, Marcelo
Ibañez, Pablo
Techera, Tamara
Calegari, Daniel
Betarte, Gustavo
Type: Preprint
Keywords: Security, Web applications, Process mining, Web application firewall, ModSecurity, ProM
Issue Date: 2021
Abstract: Web applications are permanently being exposed to attacks that exploit their vulnerabilities. To detect and prevent misuse of the functionality provided by an application, it has become necessary to develop techniques that help discern between a valid user of the system and a malicious agent. In recent years, a technology that has been widely deployed to provide automated and non-invasive support for detecting web application attacks is Web Application Firewalls. In this work, we put forward and discuss the application of Process Mining techniques to detect deviations from the expected behavior of web applications. The objects of behavior analysis are logs generated by a widely deployed WAF called ModSecurity. We discuss experiments we have carried out applying our mining method on the well-known e-commerce platform Magento and using the ProM tool for the execution of the process mining techniques.
Description: CLEI 21, Conferencia Latinoamericana de Informática, San José, Costa Rica, 25 al 29 de octubre de 2021.
Publisher: Centro Latinoamericano de Estudios de Informática
Citation: Bruno, M., Ibañez, P., Techera, T., y otros. Exploring the application of process mining techniques to improve web application security [Preprint]. Publicado en : CLEI 21, Conferencia Latinoamericana de Informática, San José, Costa Rica, 25 al 29 de octubre de 2021.
License: Licencia Creative Commons Atribución - No Comercial - Sin Derivadas (CC - By-NC-ND 4.0)
Appears in Collections:Reportes Técnicos - Instituto de Computación

Files in This Item:
File Description SizeFormat  
BITCB21.pdfPreprint1,4 MBAdobe PDFView/Open


This item is licensed under a Creative Commons License Creative Commons