@article {Kakavand:2016:1936-6612:2827, title = "Towards a Defense Mechanism Against REST-Based Web Service Attacks", journal = "Advanced Science Letters", parent_itemid = "infobike://asp/asl", publishercode ="asp", year = "2016", volume = "22", number = "10", publication date ="2016-10-01T00:00:00", pages = "2827-2831", itemtype = "ARTICLE", issn = "1936-6612", url = "https://www.ingentaconnect.com/content/asp/asl/2016/00000022/00000010/art00048", doi = "doi:10.1166/asl.2016.7091", keyword = "SOAP, TMAD Model, REST, Web Services, IDS", author = "Kakavand, Mohsen and Mustapha, Norwati and Mustapha, Aida and Abdullah, Mohd Taufik and Ahmadi, Behjat", abstract = "Representational State Transfer (REST) web services has gained popular acceptance over the world-wide-web as a straightforward choice to the traditional or SOAP-based services. However, at present the REST-based service implementation does not have pre-defined security protection methods. In this paper, we present a defense mechanism against REST-based web service attacks called the REST-IDS, for a defense-in-depth network security in web service layer. REST-IDS is an intelligent mechanism that employs statistical approach to the state-of-the-art Text Mining-Based Anomaly Detection (TMAD) model to detect unknown novel vulnerabilities, which is sensitive to payload attacks.", }