| dc.creator | Sureda Riera, Tomás | |
| dc.creator | Bermejo Higuera, Juan Ramón | |
| dc.creator | Bermejo-Higuera, Javier | |
| dc.creator | Sicilia, Juan Antonio | |
| dc.creator | Martínez Herraiz, José-Javier | |
| dc.date.accessioned | 2023-03-27T14:13:17Z | |
| dc.date.accessioned | 2023-09-07T15:18:46Z | |
| dc.date.available | 2023-03-27T14:13:17Z | |
| dc.date.available | 2023-09-07T15:18:46Z | |
| dc.date.created | 2023-03-27T14:13:17Z | |
| dc.identifier | Riera, T. S., Ramón, J., Higuera, J. B., Antonio, J., Javier, J. (2022). Systematic Approach for Web Protection Runtime Tools’ Effectiveness Analysis. CMES-Computer Modeling in Engineering & Sciences, 133(3), 579–599. | |
| dc.identifier | 1526-1492 | |
| dc.identifier | https://reunir.unir.net/handle/123456789/14433 | |
| dc.identifier | https://doi.org/10.32604/cmes.2022.020976 | |
| dc.identifier.uri | https://repositorioslatinoamericanos.uchile.cl/handle/2250/8731761 | |
| dc.description.abstract | Web applications represent one of the principal vehicles by which attackers gain access to an organization’s network or resources. Thus, different approaches to protect web applications have been proposed to date. Of them, the two major approaches are Web Application Firewalls (WAF) and Runtime Application Self Protection (RASP). It is, thus, essential to understand the differences and relative effectiveness of both these approaches for effective decision-making regarding the security of web applications. Here we present a comparative study between WAF and RASP simulated settings, with the aim to compare their effectiveness and efficiency against different categories of attacks. For this, we used computation of different metrics and sorted their results using F-Score index. We found that RASP tools scored better than WAF tools. In this study, we also developed a new experimental methodology for the objective evaluation of web protection tools since, to the best of our knowledge, no method specifically evaluates web protection tools. | |
| dc.language | eng | |
| dc.publisher | CMES - Computer Modeling in Engineering and Sciences | |
| dc.relation | ;vol. 133, nº 3 | |
| dc.relation | https://www.techscience.com/CMES/v133n3/49215 | |
| dc.rights | openAccess | |
| dc.subject | experimental methodology | |
| dc.subject | F-Score | |
| dc.subject | Runtime Application Self Protection (RASP) | |
| dc.subject | Web Application Firewall (WAF) | |
| dc.subject | web attacks | |
| dc.subject | Scopus | |
| dc.subject | JCR | |
| dc.title | Systematic Approach for Web Protection Runtime Tools’ Effectiveness Analysis | |
| dc.type | Articulo Revista Indexada | |
