Automating Intrusion Response via Virtualization for Realizing Uninterruptible Web Services

被引:6
|
作者
Huang, Yih [1 ]
Ghosh, Anup K. [1 ]
机构
[1] George Mason Univ, Ctr Secure Informat Syst, Fairfax, VA 22030 USA
来源
2009 8TH IEEE INTERNATIONAL SYMPOSIUM ON NETWORK COMPUTING AND APPLICATIONS | 2009年
关键词
trustworhy computing; web server security; service availability; intrusion tolerance; automatic recovery;
D O I
10.1109/NCA.2009.37
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
We present a virtualization-based web server system, a prototype, and experimental results for providing uninterrupted web services in the presence of intrusion attacks and software faults. The proposed system utilizes replicated virtual servers managed by a closed-loop feedback controller. Using anomaly and intrusion sensor outputs, the controller calculates cost-weighted actions against threats to ensure web service continuity. We will show that the system can handle broad classes of attacks. Experiment results show that our prototype retains 60% of its peak throughput under 8 DoS attacks per second over extended periods.
引用
收藏
页码:114 / 117
页数:4
相关论文
共 50 条
  • [1] On automating Web services discovery
    Boualem Benatallah
    Mohand-Said Hacid
    Alain Leger
    Christophe Rey
    Farouk Toumani
    The VLDB Journal, 2005, 14 : 84 - 96
  • [2] Automating the procurement of web services
    Martín-Díaz, O
    Ruiz-Cortés, A
    Durán, A
    Benavides, D
    Toro, M
    SERVICE-ORIENTED COMPUTING - ICSOC 2003, 2003, 2910 : 91 - 103
  • [3] On automating Web services discovery
    Benatallah, B
    Hacid, MS
    Leger, A
    Rey, C
    Toumani, F
    VLDB JOURNAL, 2005, 14 (01): : 84 - 96
  • [4] Automating the composition of transactional Web services
    Montagut, Frederic
    Molva, Refik
    Golega, Silvan Tecumseh
    INTERNATIONAL JOURNAL OF WEB SERVICES RESEARCH, 2008, 5 (01) : 24 - 41
  • [5] VWS: Applying virtualization techniques to Web Services
    Vilas, Julio Fernandez
    Arias, Jose Pazos
    Vilas, Ana Fernandez
    INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY, 2006, 6 (5B): : 120 - 128
  • [6] Intrusion Tolerant Services Through Virtualization: a Shared Memory Approach
    Stumm Junior, Valdir
    Lung, Lau Cheuk
    Correia, Miguel
    Fraga, Joni da Silva
    Lau, Jim
    2010 24TH IEEE INTERNATIONAL CONFERENCE ON ADVANCED INFORMATION NETWORKING AND APPLICATIONS (AINA), 2010, : 768 - 774
  • [7] Automating Isolation and Least Privilege in Web Services
    Blankstein, Aaron
    Freedman, Michael J.
    2014 IEEE SYMPOSIUM ON SECURITY AND PRIVACY (SP 2014), 2014, : 133 - 148
  • [8] Concurrency issues in automating RTS for web services
    Ruth, Michael
    Tu, Shengru
    2007 IEEE INTERNATIONAL CONFERENCE ON WEB SERVICES, PROCEEDINGS, 2007, : 1142 - +
  • [9] Realizing Mobile Web Services for Dynamic Applications
    Zaplata, Sonja
    Dreiling, Viktor
    Lamersdorf, Winfried
    SOFTWARE SERVICES FOR E-BUSINESS AND E-SOCIETY, 2009, 305 : 240 - 254
  • [10] On the RESTful Web Services for Managing Application Virtualization Environments
    Yildiz, Elif Cansu
    Unal, Engin
    Tuzun, Hakan
    Aktas, Doruk Eren
    Aktas, Mehmet S.
    2019 IEEE INTERNATIONAL CONFERENCE ON BIG DATA (BIG DATA), 2019, : 3881 - 3886
12345