|
The New Framework to Defend Against XML-Based Attacks |
|---|---|
| รหัสดีโอไอ | |
| Creator | ชาตรี ทองวรรณ |
| Title | The New Framework to Defend Against XML-Based Attacks |
| Contributor | Waraporn Lilakiatsakun |
| Publisher | Faculty of Information Science and Technology, Mahanakorn University of Technology |
| Publication Year | 2558 |
| Journal Title | Journal of Information Science and Technology |
| Journal Vol. | 5 |
| Journal No. | 1 |
| Page no. | 1-12 |
| Keyword | Data validation, XML-based attack |
| URL Website | https://tci-thaijo.org/index.php/JIST |
| Website title | Journal of Information Science and Technology |
| ISSN | 2651-1053 |
| Abstract | This paper presents the new framework that has the ability to detect and prevent attacks that are based on XML to Web service. These would be Oversize Payload attack, Recursive Payload attack, Parameter Tampering attack, Buffer Overflow attack or Replay Attack. The framework consists of three stages. The first stage is to learn XML documents leading to create XML schema. The second stage is to set all needed parameters and the third stage is to validate the XML format. The framework has been developed using Apache Tomcat, Apache Axis2, MySQL and JAVA language. For the experiment, it shows that mechanisms of the framework work effectively in detection and preventing attacks that are based on XML attacks. |
