Development of WEB-based Automatic Detection Tool for Web Attack Traceability
This paper introduces the development of a web-based web attack tracking automatic detection tool in terms of both algorithm and system design, and describes the architecture of web attack traceability, which illustrates traceability techniques at various levels.
Abstract
A cyber attack is an act of information destruction and theft that is closely linked to Internet technology. Intruders can gain personal benefit by stealing users' passwords or other means, and can also cut off network contacts from the source of the attack that lose and affect normal working hours and make it a vicious circle. In the context of big data, information is hidden and disseminated. The hacker's improper use of it or even vandalism may lead to some important documents and web pages being damaged or lost. Therefore, in order to ensure the privacy of website visitors, improve the quality of user experience, and protect their own interests from being infringed, the research and application of Web attack technology is generated. This paper introduces the development of a web-based web attack tracking automatic detection tool in terms of both algorithm and system design, describes the architecture of web attack traceability, illustrates traceability techniques at various levels, establishes a web attack event traceability ontology model, fuses the clues data extracted from web attack events and threat intelligence data to form a web attack event traceability relationship diagram, analyses actual traceability Finally, the feasibility and effectiveness of the method are verified through experiments, and the future development direction of attack traceability technology is explained.