# A Visual Model for Web Applications Security Monitoring

**Authors:** Tran Tri Dang, Tran Khanh Dang

arXiv: 1904.03320 · 2019-04-09

## TL;DR

This paper introduces a visual model that enhances human understanding of web application security, complementing automated intrusion detection with visualization techniques to improve monitoring effectiveness.

## Contribution

It presents a novel visual monitoring model that aids human operators in understanding complex web security structures, supported by a prototype implementation and testing results.

## Key findings

- Proves the model's usefulness in understanding security structure
- Demonstrates improved monitoring effectiveness
- Supports human-assisted security analysis

## Abstract

This paper proposes a novel visual model for web applications security monitoring. Although an automated intrusion detection system can shield a web application from common attacks, it usually cannot detect more complicated break-ins. So, a human-assisted monitoring system is an indispensable complement, following the "Defense in depth" strategy. To support human operators working more effectively and efficiently, information visualization techniques are utilized in this model. A prototype implementation of this model is created and is used to test against a popular open source web application. Testing results prove the model's usefulness, at least in understanding the web application security structure.

---
Source: https://tomesphere.com/paper/1904.03320