Original Research Article
Year: 2015 | Month: July | Volume: 2 | Issue: 7 | Pages: 406-414
Detection of Anomalous users in Web Applications using Fuzzy Logic
Rasoul Jourmand1, Seyed Enayatallah Alavi2
1MSc Student, Institute for Higher Education ACECR Khuzestan, Ahwaz, Iran,
2Assistant Professor, Shahid Chamran University of Ahwaz, Ahwaz, Iran.
Corresponding Author: Rasoul Jourmand
ABSTRACT
In this paper, we present an approach based on XML files, which can be implemented independently from the application layer in a proxy server, to perform related operations to detect abnormalities in the web applications without the need for initial training. Normal behavior of web applications is automatically and accurately based on database structure and web pages defined in XML files. In this approach all requests sent by user browser are received and analyzed, so if receiving requests weren’t match with the configured security model, they will never reach web server. In addition, to detect anomalous users fuzzy logic has taken interest. This approach has been implemented in Medical Sciences Research Automation system (Syat) of Mazandaran, Iran. The results of this evaluation shows that using fuzzy logic to discover anomalous users comes along with flexibility, increased accuracy and reducing false detects.
Key Words: Security - Anomaly Detection - Web Application - Fuzzy logic.