ZenIDS: Introspective Intrusion Detection for PHP Applications

Speaker/Bio

Alexander Oleinik is a PhD student studying systems security at Boston University, where he is working with Prof. Manuel Egele

Abstract

PHP continues to be the most popular language for generating dynamic web content. The standard PHP library provides powerful and accessible tools for developing websites, but improper usage of these tools can lead to severe software vulnerabilities in the web applications. These vulnerabilities enable potential attackers to cause the web server to deviate from its expected behavior. ZenIDS is an Intrusion detection system which builds a profile of trusted execution paths for a PHP application, and monitors a live PHP interpreter to raise alerts when execution strays from the trusted profile.

Reference

• Hawkins, Byron, and Brian Demsky. "ZenIDS: introspective intrusion

detection for PHP applications." Proceedings of the 39th International Conference on Software Engineering. IEEE Press, 2017.