Understanding the Feature Space and Decision Boundaries of Commercial WAFs Using Maximum Entropy in the Mean-Reference-Cited by-同舟云学术

Understanding the Feature Space and Decision Boundaries of Commercial WAFs Using Maximum Entropy in the Mean

Published:2023-10-24 Issue:11 Volume:25 Page:1476
ISSN:1099-4300
Container-title:Entropy
language:en
Short-container-title:Entropy

Author:

Gzyl Henryk¹^ORCID,ter Horst Enrique²^ORCID,Peña-Garcia Nathalie³^ORCID,Torres Andres²^ORCID

Affiliation:

1. Centro de Finanzas IESA, Caracas 1010, Venezuela

2. School of Management, Universidad de los Andes, Bogota 111711, Colombia

3. Research Department, CESA Business School, Bogota 110311, Colombia

Abstract

The security of a network requires the correct identification and characterization of the attacks through its ports. This involves the follow-up of all the requests for access to the networks by all kinds of users. We consider the frequency of connections and the type of connections to a network, and determine their joint probability. This leads to the problem of determining a joint probability distribution from the knowledge of its marginals in the presence of errors of measurement. Mathematically, this consists of an ill-posed linear problem with convex constraints, which we solved by the method of maximum entropy in the mean. This procedure is flexible enough to accommodate errors in the data in a natural way. Also, the procedure is model-free and, hence, it does not require fitting unknown parameters.

Publisher

MDPI AG

Subject

General Physics and Astronomy

Link

https://www.mdpi.com/1099-4300/25/11/1476/pdf

Reference13 articles.

1. Matatall, N., and Arseniev, M. (2008). Web Application Security, University of California.

2. Prandl, S., Lazarescu, M., and Pham, D.S. (2015). Information Systems Security, Springer International Publishing. Lecture Notes in Computer Science.

3. Biggio, B., Corona, I., Maiorca, D., Nelson, B., Šrndić, N., Laskov, P., Giacinto, G., and Roli, F. (2013). Advanced Information Systems Engineering, Springer. Lecture Notes in Computer Science.

4. Papernot, N., McDaniel, P., Goodfellow, I., Jha, S., Celik, Z.B., and Swami, A. (2017, January 2–6). Practical Black-Box Attacks against Machine Learning. Proceedings of the ACM Asia Conference on Computer and Communications Security, Abu Dhabi, United Arab Emirates.

5. Network intrusion detection system: A systematic study of machine learning and deep learning approaches;Ahmad;Trans. Emerg. Telecommun. Technol.,2020