Home > Publications
Home University of Twente
Prospective Students
Intranet (internal)

EEMCS EPrints Service

25352 A two-tier system for web attack detection using linear discriminant method
Home Policy Brochure Browse Search User Area Contact Help

Tan, Zhiyuan and Jamdagni, Aruna and Nanda, Priyadarsi and He, Xiangjian and Liu, Ren Ping and Jia, Wenjing and Yeh, Wei-chang (2010) A two-tier system for web attack detection using linear discriminant method. In: Information and Communications Security. Lecture Notes in Computer Science 6476. Springer Verlag, Berlin, pp. 459-471. ISSN 0302-9743

Full text available as:


458 Kb
Open Access

Official URL:


Computational cost is one of the major concerns of the commercial Intrusion Detection Systems (IDSs). Although these systems are proven to be promising in detecting network attacks, they need to check all the signatures to identify a suspicious attack in the worst case. This is time consuming. This paper proposes an efficient two-tier IDS, which applies a statistical signature approach and a Linear Discriminant Method (LDM) for the detection of various Web-based attacks. The two-tier system converts high-dimensional feature space into a low-dimensional feature space. It is able to reduce the computational cost and integrates groups of signatures into an identical signature. The integration of signatures reduces the cost of attack identification. The final decision is made on the integrated low-dimensional feature space. Finally, the proposed two-tier system is evaluated using DARPA 1999 IDS dataset for webbased attack detection.

Item Type:Book Section
Research Group:EWI-DIES: Distributed and Embedded Security
Research Program:CTIT-ISTRICE: Integrated Security and Privacy in a Networked World
Uncontrolled Keywords:Web-based attack, Intrusion detection, Packet payload, Feature selection, Linear discriminant method
ID Code:25352
Deposited On:28 November 2014
More Information:statistics

Export this item as:

To correct this item please ask your editor

Repository Staff Only: edit this item