信息网络安全 ›› 2021, Vol. 21 ›› Issue (8): 91-96.doi: 10.3969/j.issn.1671-1122.2021.08.011

• 理论研究 • 上一篇    下一篇

基于马尔可夫链的Web业务安全分析预警

鲍亮, 俞少华, 唐晓婷()   

  1. 公安部第三研究所,上海 200120
  • 收稿日期:2021-03-26 出版日期:2021-08-10 发布日期:2021-09-01
  • 通讯作者: 唐晓婷 E-mail:693959307@qq.com
  • 作者简介:鲍亮(1983—),男,安徽,助理研究员,硕士,主要研究方向为信息安全|俞少华(1984—),男,江西,助理研究员,硕士,主要研究方向为网络安全|唐晓婷(1990—),女,上海,硕士,主要研究方向为信息安全、反欺诈

Early Warning of Web Business Security Analysis Based on Markov Chain

BAO Liang, YU Shaohua, TANG Xiaoting()   

  1. The Third Research Institute of Ministry of Public Security, Shanghai 200120, China
  • Received:2021-03-26 Online:2021-08-10 Published:2021-09-01
  • Contact: TANG Xiaoting E-mail:693959307@qq.com

摘要:

业务安全作为Web安全中的一部分越来越受到重视,黑客利用业务逻辑漏洞对系统进行攻击很难通过现有的防护手段进行防护和预警。文章基于业务逻辑漏洞被利用时造成的业务流程的细微差别,利用马尔可夫链算法,通过对操作日志数据的训练,形成操作序列特征模型,进而实现对利用业务逻辑漏洞攻击的有效预警,并探索实际的应用模式及价值。

关键词: 业务安全, 马尔可夫链, 业务流程, 预警

Abstract:

As a part of Web security, business security has been paid more and more attention. It is very difficult to protect and forewarn when the hacker using business logic vulnerabilities. Based on the subtle difference of business process caused by the exploitation of business logic vulnerabilities, this paper uses Markov chain to form the characteristic model of normal operation sequence and abnormal operation sequence through the training of operation log data, so as to realize the effective early warning of the exploitation of business logic vulnerabilities, and explore the practical application mode and value.

Key words: business security, Markov chain, business process, early warning

中图分类号: