The widespread expansion of the internet has fueled a global surge in the utilization of various online transactions, with a significant portion of such services operating on mobile web platforms. Simultaneously, the deployment of innovative Mobile Ad Hoc Network (MANET) technologies and mobile applications has grown as solutions for diverse tasks. Unfortunately, this progress has attracted the attention of hackers, who continually devise new strategies to exploit the vulnerabilities inherent in mobile networks. This study aims to address the escalating challenges posed by cyber threats in the era of widespread internet expansion, particularly focusing on securing mobile web platforms against sophisticated attacks such as Structured Query Language Injection (SQLi) for web-based database solutions and Denial of Service (DoS/DDoS) for various applications. In response to the identified vulnerabilities, this paper proposes an HTTP regeneration (HReg) model that not only detects various cyber-attacks but also ensures the uninterrupted provision of critical services during such incidents. The model introduces an innovative regeneration algorithm capable of scanning both the connection channel and web application to detect attacks, creating survivable connections within the underlying TCP engine to replace compromised ones during an ongoing attack. In simulated environments using OMNeT++, where the server is subjected to attacks, the experimental results demonstrate the efficacy of the model. The response and performance metrics, including throughput (73%), delivery ratio (68.8%), delay (3s), and network load, showcase the model's ability to detect and neutralize attacks. A comparison with state-of-the-art approaches highlights the superior performance of the regeneration model, attributed to its additional survivability layer. While the regeneration model proves robust in simulated environments, its real-world application may encounter limitations. Future research should explore these limitations to enhance the practical applicability of the proposed model. The proposed HReg model's resilient performance under attack conditions ensures the survivability of web-based applications. This innovative approach offers practical implications for securing mobile web platforms, providing continuous delivery of critical services even in the face of persistent and evolving cyber threats. This research addresses a significant gap in existing efforts by not only focusing on attack detection but also emphasizing the development of a survivable TCP connection for HTTP servers during attacks. The introduced regeneration model stands out for its unique ability to maintain service continuity, showcasing originality in the approach to cybersecurity in the context of web-based applications.
Read full abstract