ACUM: An Approach to Combining Unsupervised Methods for Detecting Malicious Web Sessions


Demirel D. Y., Sandıkkaya M. T.

8th International Conference on Computer Science and Engineering, UBMK 2023, Burdur, Turkey, 13 - 15 September 2023, pp.288-293 identifier

  • Publication Type: Conference Paper / Full Text
  • Doi Number: 10.1109/ubmk59864.2023.10286727
  • City: Burdur
  • Country: Turkey
  • Page Numbers: pp.288-293
  • Keywords: Machine Learning, Malicious Web Session Detection, Method Combination, Unsupervised Learning
  • Istanbul Technical University Affiliated: Yes

Abstract

The increase in web-based attacks poses a significant risk to internet security. Detection and mitigation of malicious activity within web sessions are critical to protecting user data and maintaining the integrity of online platforms. This paper presents ACUM (Approach toCombining Unsupervised Methods), a novel approach for detecting malicious web sessions. ACUM leverages the power of unsupervised learning techniques to detect malicious and benign web sessions. By combining two unsupervised methods, including a local outlier factor algorithm and an autoencoder, ACUM effectively identifies both malicious and benign web sessions with high accuracy. The experimental results are obtained using three different datasets: a novel banking dataset, the CSIC 2010 dataset, and the WAF dataset. The experimental results of this approach demonstrate the efficacy of ACUM, outperforming existing detection methods and offering a robust solution to enhance web session security in the face of evolving threats.