English

The All-Seeing Eye: A Massive-Multi-Sensor Zero-Configuration Intrusion Detection System for Web Applications

Cryptography and Security 2015-06-30 v1

Abstract

Timing attacks are a challenge for current intrusion detection solutions. Timing attacks are dangerous for web applications because they may leak information about side channel vulnerabilities. This paper presents a massive-multi-sensor zero-configuration Intrusion Detection System that is especially good at detecting timing attacks. Unlike current solutions, the proposed Intrusion Detection System uses a huge number of sensors for attack detection. These sensors include sensors automatically inserted into web application or into the frameworks used to build web applications. With this approach the Intrusion Detection System is able to detect sophisticated attacks like timing attacks or other brute-force attacks with increased accuracy. The proposed massive-multi-sensor zero-configuration intrusion detection system does not need specific knowledge about the system to protect, hence it offers zero-configuration capability.

Keywords

Cite

@article{arxiv.1506.07055,
  title  = {The All-Seeing Eye: A Massive-Multi-Sensor Zero-Configuration Intrusion Detection System for Web Applications},
  author = {Christoph Pohl and Hans-Joachim Hof},
  journal= {arXiv preprint arXiv:1506.07055},
  year   = {2015}
}

Comments

SECURWARE 2013 : The Seventh International Conference on Emerging Security Information, Systems and Technologies

R2 v1 2026-06-22T09:58:43.864Z