{"id":"https://openalex.org/W3180874179","doi":"https://doi.org/10.1109/tdsc.2021.3095417","title":"RAT: Reinforcement-Learning-Driven and Adaptive Testing for Vulnerability Discovery in Web Application Firewalls","display_name":"RAT: Reinforcement-Learning-Driven and Adaptive Testing for Vulnerability Discovery in Web Application Firewalls","publication_year":2021,"publication_date":"2021-07-07","ids":{"openalex":"https://openalex.org/W3180874179","doi":"https://doi.org/10.1109/tdsc.2021.3095417","mag":"3180874179"},"language":"en","primary_location":{"id":"doi:10.1109/tdsc.2021.3095417","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2021.3095417","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"},"type":"article","indexed_in":["arxiv","crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://arxiv.org/pdf/2312.07885","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5068770607","display_name":"Mohammadhossein Amouei","orcid":"https://orcid.org/0000-0003-4208-4014"},"institutions":[{"id":"https://openalex.org/I176861719","display_name":"University of Shahrood","ror":"https://ror.org/00yqvtm78","country_code":"IR","type":"education","lineage":["https://openalex.org/I176861719"]}],"countries":["IR"],"is_corresponding":false,"raw_author_name":"Mohammadhossein Amouei","raw_affiliation_strings":["Faculty of Computer Engineering, Shahrood University of Technology, Shahrud, Iran"],"raw_orcid":"https://orcid.org/0000-0003-4208-4014","affiliations":[{"raw_affiliation_string":"Faculty of Computer Engineering, Shahrood University of Technology, Shahrud, Iran","institution_ids":["https://openalex.org/I176861719"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5035057038","display_name":"Mohsen Rezvani","orcid":"https://orcid.org/0000-0002-1172-1941"},"institutions":[{"id":"https://openalex.org/I176861719","display_name":"University of Shahrood","ror":"https://ror.org/00yqvtm78","country_code":"IR","type":"education","lineage":["https://openalex.org/I176861719"]}],"countries":["IR"],"is_corresponding":false,"raw_author_name":"Mohsen Rezvani","raw_affiliation_strings":["Faculty of Computer Engineering, Shahrood University of Technology, Shahrud, Iran"],"raw_orcid":"https://orcid.org/0000-0002-1172-1941","affiliations":[{"raw_affiliation_string":"Faculty of Computer Engineering, Shahrood University of Technology, Shahrud, Iran","institution_ids":["https://openalex.org/I176861719"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5053910791","display_name":"Mansoor Fateh","orcid":"https://orcid.org/0000-0003-2133-3480"},"institutions":[{"id":"https://openalex.org/I176861719","display_name":"University of Shahrood","ror":"https://ror.org/00yqvtm78","country_code":"IR","type":"education","lineage":["https://openalex.org/I176861719"]}],"countries":["IR"],"is_corresponding":false,"raw_author_name":"Mansoor Fateh","raw_affiliation_strings":["Faculty of Computer Engineering, Shahrood University of Technology, Shahrud, Iran"],"raw_orcid":"https://orcid.org/0000-0003-2133-3480","affiliations":[{"raw_affiliation_string":"Faculty of Computer Engineering, Shahrood University of Technology, Shahrud, Iran","institution_ids":["https://openalex.org/I176861719"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":1,"corresponding_author_ids":[],"corresponding_institution_ids":["https://openalex.org/I176861719"],"apc_list":null,"apc_paid":null,"fwci":4.8371,"has_fulltext":true,"cited_by_count":33,"citation_normalized_percentile":{"value":0.95259863,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":98,"max":100},"biblio":{"volume":"19","issue":"5","first_page":"3371","last_page":"3386"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9998000264167786,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9972000122070312,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.9779999852180481,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/sql-injection","display_name":"SQL injection","score":0.8926430940628052},{"id":"https://openalex.org/keywords/cross-site-scripting","display_name":"Cross-site scripting","score":0.767274796962738},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7665488719940186},{"id":"https://openalex.org/keywords/reinforcement-learning","display_name":"Reinforcement learning","score":0.7470054626464844},{"id":"https://openalex.org/keywords/fuzz-testing","display_name":"Fuzz testing","score":0.5795928239822388},{"id":"https://openalex.org/keywords/web-application","display_name":"Web application","score":0.5249276757240295},{"id":"https://openalex.org/keywords/brute-force-attack","display_name":"Brute-force attack","score":0.46590620279312134},{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.44511330127716064},{"id":"https://openalex.org/keywords/scripting-language","display_name":"Scripting language","score":0.4322611689567566},{"id":"https://openalex.org/keywords/payload","display_name":"Payload (computing)","score":0.43202337622642517},{"id":"https://openalex.org/keywords/attack-surface","display_name":"Attack surface","score":0.41427624225616455},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.3877478241920471},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.38048648834228516},{"id":"https://openalex.org/keywords/the-internet","display_name":"The Internet","score":0.33753764629364014},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3271558880805969},{"id":"https://openalex.org/keywords/web-application-security","display_name":"Web application security","score":0.274889200925827},{"id":"https://openalex.org/keywords/world-wide-web","display_name":"World Wide Web","score":0.27135634422302246},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.19531035423278809},{"id":"https://openalex.org/keywords/search-engine","display_name":"Search engine","score":0.16786494851112366},{"id":"https://openalex.org/keywords/web-development","display_name":"Web development","score":0.1643604040145874},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.12313714623451233}],"concepts":[{"id":"https://openalex.org/C150451098","wikidata":"https://www.wikidata.org/wiki/Q506059","display_name":"SQL injection","level":5,"score":0.8926430940628052},{"id":"https://openalex.org/C39569185","wikidata":"https://www.wikidata.org/wiki/Q371199","display_name":"Cross-site scripting","level":5,"score":0.767274796962738},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7665488719940186},{"id":"https://openalex.org/C97541855","wikidata":"https://www.wikidata.org/wiki/Q830687","display_name":"Reinforcement learning","level":2,"score":0.7470054626464844},{"id":"https://openalex.org/C111065885","wikidata":"https://www.wikidata.org/wiki/Q1189053","display_name":"Fuzz testing","level":3,"score":0.5795928239822388},{"id":"https://openalex.org/C118643609","wikidata":"https://www.wikidata.org/wiki/Q189210","display_name":"Web application","level":2,"score":0.5249276757240295},{"id":"https://openalex.org/C207468940","wikidata":"https://www.wikidata.org/wiki/Q869370","display_name":"Brute-force attack","level":3,"score":0.46590620279312134},{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.44511330127716064},{"id":"https://openalex.org/C61423126","wikidata":"https://www.wikidata.org/wiki/Q187432","display_name":"Scripting language","level":2,"score":0.4322611689567566},{"id":"https://openalex.org/C134066672","wikidata":"https://www.wikidata.org/wiki/Q1424639","display_name":"Payload (computing)","level":3,"score":0.43202337622642517},{"id":"https://openalex.org/C2776576444","wikidata":"https://www.wikidata.org/wiki/Q303569","display_name":"Attack surface","level":2,"score":0.41427624225616455},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.3877478241920471},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.38048648834228516},{"id":"https://openalex.org/C110875604","wikidata":"https://www.wikidata.org/wiki/Q75","display_name":"The Internet","level":2,"score":0.33753764629364014},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3271558880805969},{"id":"https://openalex.org/C59241245","wikidata":"https://www.wikidata.org/wiki/Q4781497","display_name":"Web application security","level":4,"score":0.274889200925827},{"id":"https://openalex.org/C136764020","wikidata":"https://www.wikidata.org/wiki/Q466","display_name":"World Wide Web","level":1,"score":0.27135634422302246},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.19531035423278809},{"id":"https://openalex.org/C97854310","wikidata":"https://www.wikidata.org/wiki/Q19541","display_name":"Search engine","level":2,"score":0.16786494851112366},{"id":"https://openalex.org/C79373723","wikidata":"https://www.wikidata.org/wiki/Q386275","display_name":"Web development","level":3,"score":0.1643604040145874},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.12313714623451233},{"id":"https://openalex.org/C164120249","wikidata":"https://www.wikidata.org/wiki/Q995982","display_name":"Web search query","level":3,"score":0.0},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.0},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.0},{"id":"https://openalex.org/C194222762","wikidata":"https://www.wikidata.org/wiki/Q114486","display_name":"Query by Example","level":4,"score":0.0}],"mesh":[],"locations_count":2,"locations":[{"id":"doi:10.1109/tdsc.2021.3095417","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tdsc.2021.3095417","pdf_url":null,"source":{"id":"https://openalex.org/S133795288","display_name":"IEEE Transactions on Dependable and Secure Computing","issn_l":"1545-5971","issn":["1545-5971","1941-0018","2160-9209"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310320439","host_organization_name":"IEEE Computer Society","host_organization_lineage":["https://openalex.org/P4310320439","https://openalex.org/P4310319808"],"host_organization_lineage_names":["IEEE Computer Society","Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Dependable and Secure Computing","raw_type":"journal-article"},{"id":"pmh:oai:arXiv.org:2312.07885","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2312.07885","pdf_url":"https://arxiv.org/pdf/2312.07885","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"}],"best_oa_location":{"id":"pmh:oai:arXiv.org:2312.07885","is_oa":true,"landing_page_url":"http://arxiv.org/abs/2312.07885","pdf_url":"https://arxiv.org/pdf/2312.07885","source":{"id":"https://openalex.org/S4306400194","display_name":"arXiv (Cornell University)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I205783295","host_organization_name":"Cornell University","host_organization_lineage":["https://openalex.org/I205783295"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"text"},"sustainable_development_goals":[{"score":0.5600000023841858,"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W3180874179.pdf"},"referenced_works_count":43,"referenced_works":["https://openalex.org/W1614298861","https://openalex.org/W1663662652","https://openalex.org/W1962083226","https://openalex.org/W1976299830","https://openalex.org/W1987971958","https://openalex.org/W2044058194","https://openalex.org/W2064924033","https://openalex.org/W2089468765","https://openalex.org/W2120303002","https://openalex.org/W2131462252","https://openalex.org/W2135624716","https://openalex.org/W2144611797","https://openalex.org/W2150566873","https://openalex.org/W2158903965","https://openalex.org/W2168029744","https://openalex.org/W2204102791","https://openalex.org/W2294407885","https://openalex.org/W2308071406","https://openalex.org/W2528809805","https://openalex.org/W2533545350","https://openalex.org/W2603959005","https://openalex.org/W2608862709","https://openalex.org/W2805072900","https://openalex.org/W2810065972","https://openalex.org/W2883383747","https://openalex.org/W2902930721","https://openalex.org/W2903893305","https://openalex.org/W2912204801","https://openalex.org/W2946129952","https://openalex.org/W2952040228","https://openalex.org/W2954308093","https://openalex.org/W2974612441","https://openalex.org/W2998170209","https://openalex.org/W2999097465","https://openalex.org/W3021693099","https://openalex.org/W3101749733","https://openalex.org/W3114716045","https://openalex.org/W6636510571","https://openalex.org/W6679224782","https://openalex.org/W6698240980","https://openalex.org/W6728550200","https://openalex.org/W6753296173","https://openalex.org/W6757077982"],"related_works":["https://openalex.org/W4312406950","https://openalex.org/W2611747598","https://openalex.org/W2549898710","https://openalex.org/W2166381878","https://openalex.org/W2955734438","https://openalex.org/W2504194819","https://openalex.org/W3132720240","https://openalex.org/W4256450364","https://openalex.org/W3069109132","https://openalex.org/W3188339517"],"abstract_inverted_index":{"Due":[0],"to":[1,13,19,33,39,81,133],"the":[2,21,40,55,101,106,173,180,186],"increasing":[3],"sophistication":[4],"of":[5,24,43,182],"web":[6,25],"attacks,":[7],"Web":[8],"Application":[9],"Firewalls":[10],"(WAFs)":[11],"have":[12,51,98],"be":[14],"tested":[15],"and":[16,68,94,162,178],"updated":[17],"regularly":[18],"resist":[20],"relentless":[22],"flow":[23],"attacks.":[26],"In":[27,87],"practice,":[28],"using":[29],"a":[30,122,128],"brute-force":[31],"attack":[32,44,116,138],"discover":[34,82,134],"vulnerabilities":[35,84,104],"is":[36],"infeasible":[37],"due":[38],"wide":[41],"variety":[42],"patterns.":[45],"Thus,":[46],"various":[47],"black-box":[48,78],"testing":[49,79,191],"techniques":[50,59],"been":[52,99],"proposed":[53],"in":[54,85,171],"literature.":[56],"However,":[57],"these":[58],"suffer":[60],"from":[61],"low":[62],"efficiency.":[63],"This":[64],"article":[65],"presents":[66],"Reinforcement-Learning-Driven":[67],"Adaptive":[69],"Testing":[70],"(":[71],"<italic":[72,111,143,157],"xmlns:mml=\"http://www.w3.org/1998/Math/MathML\"":[73,112,144,158],"xmlns:xlink=\"http://www.w3.org/1999/xlink\">RAT</i>":[74,113,145,159],"),":[75],"an":[76],"automated":[77],"strategy":[80],"injection":[83,93],"WAFs.":[86],"particular,":[88],"we":[89],"focus":[90],"on":[91,165],"SQL":[92],"Cross-site":[95],"Scripting,":[96],"which":[97],"among":[100],"top":[102],"ten":[103],"over":[105],"past":[107],"decade.":[108],"More":[109],"specifically,":[110],"clusters":[114],"similar":[115],"samples":[117],"together.":[118],"It":[119],"then":[120],"utilizes":[121],"reinforcement":[123],"learning":[124],"technique":[125],"combined":[126],"with":[127,146],"novel":[129],"adaptive":[130],"search":[131],"algorithm":[132],"almost":[135],"all":[136],"bypassing":[137,176,188],"patterns":[139],"efficiently.":[140],"We":[141],"compare":[142],"three":[147],"state-of-the-art":[148],"me&thods":[149],"considering":[150],"their":[151],"objectives.":[152],"The":[153],"experiments":[154],"show":[155],"that":[156],"performs":[160],"33.53":[161],"63.16":[163],"percent":[164],"average":[166],"better":[167],"than":[168],"its":[169],"counterparts":[170],"discovering":[172],"most":[174],"possible":[175],"payloads":[177],"reducing":[179],"number":[181],"attempts":[183],"before":[184],"finding":[185],"first":[187],"payload":[189],"when":[190],"well-configured":[192],"WAFs,":[193],"respectively.":[194]},"counts_by_year":[{"year":2026,"cited_by_count":8},{"year":2025,"cited_by_count":8},{"year":2024,"cited_by_count":10},{"year":2023,"cited_by_count":7}],"updated_date":"2026-06-26T08:34:08.712188","created_date":"2025-10-10T00:00:00"}