Abstract—Web applications are becoming the dominant way to provide access to on-line services such as e-commerce & e-banking. Attackers have found new type of attacks to exploit vulnerabilities in these web applications. Among these attacks reflected web parameter attacks have received much attention in the recent scientific literature. Efficient mechanism such as Input validation is an addition overburden scenario for executing a secure transaction in a server side. This paper presents a new, highly automated approach that prevents web parameter attacks using mobile agents in the client side. Our Proposed system has to extract keywords from the web application parameter in a client side and use the gene alignment approach to measure the identity between two parameter sequences in order to avoid web attacks. Hirschberg algorithm is an divide and conquer approach for measuring the relevance between two sequences and it has advantageous over other methods in order to reduce the time complexity O((nm)) and space complexity O(min (nm)). This system was able to stop all of the successful attacks and did not generate any false positives.
Index Terms—Web attack detection, Intrusion Prevention System, Web Application Parameter, Hirschberg Algorithm, Browser Security, Mobile agents.
E. Rajesh is with the Department of Computer Science and Engineering, Sri Manakula Vinayagar Engineering College (Affiliated to Pondicherry University, Puducherry), Madagadipet, Puducherry -605 107, India.
Phone: +91 9943998866, +91 9629455044
R. Raju is with the Department of Information Technology, Sri Manakula Vinayagar Engineering College (Affiliated to Pondicherry University, Puducherry), Madagadipet, Puducherry -605 107, India.
Phone: +91 9442029188
R. Ezumalai is with the Tata Consultancy Service, Chennai, India.
Phone: +91 9345486422
Cite: E. Rajesh, R. Raju and R. Ezumalai, "Mitigation of Web Based attacks using Mobile Agents in client side," International Journal of Computer Theory and Engineering vol. 2, no. 5, pp. 746-750, 2010.