Iterative automatic generation of attribute values for rules of a web application layer attack detector
US8997232B2 · kind B2 · utility
Assignee
Inventors
Key dates
| Filing date | Jul 22, 2013 |
| Grant date | Mar 31, 2015 |
| Priority date | — |
| Expiry date | Dec 12, 2033 |
Classification
- Technology area (CPC H)Electricity
- CPC primaryH04L67/02
- WIPO fieldDigital communication
- WIPO sectorElectrical engineering
Abstract
According to one embodiment, a computing device is coupled to a set of web application layer attack detectors (AD), which are coupled between HTTP clients and web application servers. The computing device learns a new set of attribute values for a set of attribute identifiers for each of a sequence of rules through an iterative process having a plurality of iterations. The iterative process begins with an attack specific rule, and the sequence of rules includes an attacker specific rule and another attack specific rule. Each iteration includes receiving a current alert package from one of the ADs sent responsive to a set of packets carrying a web application layer request meeting a condition of a current rule used by the AD, automatically generating a new set of attribute values based upon the current alert package, and transmitting the new set of attribute values to the set of ADs.
Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.