-
1.
公开(公告)号:US20080047009A1
公开(公告)日:2008-02-21
申请号:US11458965
申请日:2006-07-20
申请人: Kevin Overcash , Kate Delikat , Rami Mizrahi , Galit Efron (Njtzan) , Doron Kolton , Asaf Wexler , Netta Gavrieli , Yoram Zahavi
发明人: Kevin Overcash , Kate Delikat , Rami Mizrahi , Galit Efron (Njtzan) , Doron Kolton , Asaf Wexler , Netta Gavrieli , Yoram Zahavi
IPC分类号: G06F12/14
CPC分类号: H04L63/0209 , H04L63/1408 , H04L63/166
摘要: A system and method for protection of Web based applications are described. A Web application security system is included within a computer network to monitor traffic received from a wide area network, such as the Internet, and determine if there is a threat to the Web application. The Web application security system monitors web traffic in a non-inline configuration and identifies any anomalous traffic against a profile that identifies acceptable behavior of a user of the application. Any anomalous traffic is analyzed and appropriate protective action is taken to secure the Web application against an attack.
摘要翻译: 描述了一种用于保护基于Web的应用程序的系统和方法。 Web应用程序安全系统包括在计算机网络内以监视从诸如因特网的广域网接收的流量,并确定是否存在对Web应用程序的威胁。 Web应用程序安全系统以非内联配置监视Web流量,并根据识别应用程序用户可接受行为的配置文件识别任何异常流量。 分析任何异常流量,并采取适当的保护措施来保护Web应用程序免受攻击。