Provided by: Australian Computer Society
Web based applications are very common now-a-days where almost every software can be accessible through a web browser in one form or the other. This paper proposes techniques to detect different threats related to web applications by using hypervisor-based security architecture. The proposed architecture leverages the hypervisor's visibility of the virtual machines' runtime state and traffic flows for securing the web application. The unique feature of the proposed architecture is that it is capable of doing fine granular detection of web application attacks, i.e. to the specific web page level and protecting the application against zero-day attacks.