Mostrar el registro sencillo del ítem

dc.contributor.authorSureda Riera, Tomás
dc.contributor.authorBermejo Higuera, Juan Ramón
dc.contributor.authorBermejo-Higuera, Javier
dc.contributor.authorMartínez Herraiz, José-Javier
dc.contributor.authorSicilia, Juan Antonio
dc.date2022
dc.date.accessioned2023-01-24T12:32:40Z
dc.date.available2023-01-24T12:32:40Z
dc.identifier.citationRiera, T. S., Higuera, J. R. B., Higuera, J. B., Herraiz, J. J. M., & Montalvo, J. A. S. (2022). A new multi-label dataset for Web attacks CAPEC classification using machine learning techniques. Computers & Security, 120, 102788
dc.identifier.issn0167-4048
dc.identifier.urihttps://reunir.unir.net/handle/123456789/14058
dc.description.abstractContext: There are many datasets for training and evaluating models to detect web attacks, labeling each request as normal or attack. Web attack protection tools must provide additional information on the type of attack detected, in a clear and simple way. Objectives: This paper presents a new multi-label dataset for classifying web attacks based on CAPEC classification, a new way of features extraction based on ASCII values, and the evaluation of several combinations of models and algorithms. Methods: Using a new way to extract features by computing the average of the sum of the ASCII values of each of the characters in each field that compose a web request, several combinations of algorithms (LightGBM and CatBoost) and multi-label classification models are evaluated, to provide a complete CAPEC classification of the web attacks that a system is suffering. The training and test data used for training and evaluating the models come from the new SR-BH 2020 multi-label dataset. Results: Calculating the average of the sum of the ASCII values of the different characters that make up a web request shows its usefulness for numeric encoding and feature extraction. The new SR-BH 2020 multi-label dataset allows the training and evaluation of multi-label classification models, also allowing the CAPEC classification of the various attacks that a web system is undergoing. The combination of the two-phase model with the MultiOutputClassifier module of the scikit-learn library, together with the CatBoost algorithm shows its superiority in classifying attacks in the different criticality scenarios. Conclusion: Experimental results indicate that the combination of machine learning algorithms and multi-phase models leads to improved prediction of web attacks. Also, the use of a multi-label dataset is suitable for training learning models that provide information about the type of attack. (c) 2022 The Author(s). Published by Elsevier Ltd. This is an open access article under the CC BY license ( http://creativecommons.org/licenses/by/4.0/ )es_ES
dc.language.isoenges_ES
dc.publisherComputers & Securityes_ES
dc.relation.ispartofseries;vol. 120
dc.relation.urihttps://www.sciencedirect.com/science/article/pii/S0167404822001833?via%3Dihubes_ES
dc.rightsopenAccesses_ES
dc.subjectmulti-label classificationes_ES
dc.subjectdatasetes_ES
dc.subjectLightGBMes_ES
dc.subjectCatBoostes_ES
dc.subjectmachine learninges_ES
dc.subjectJCRes_ES
dc.subjectScopuses_ES
dc.titleA new multi-label dataset for Web attacks CAPEC classification using machine learning techniqueses_ES
dc.typeArticulo Revista Indexadaes_ES
reunir.tag~ARIes_ES
dc.identifier.doihttps://doi.org/10.1016/j.cose.2022.102788


Ficheros en el ítem

Thumbnail

Este ítem aparece en la(s) siguiente(s) colección(ones)

Mostrar el registro sencillo del ítem