Automating Intrusion Response via Virtualization for Realizing Uninterruptible Web Services

被引:6
|
作者
Huang, Yih [1 ]
Ghosh, Anup K. [1 ]
机构
[1] George Mason Univ, Ctr Secure Informat Syst, Fairfax, VA 22030 USA
来源
2009 8TH IEEE INTERNATIONAL SYMPOSIUM ON NETWORK COMPUTING AND APPLICATIONS | 2009年
关键词
trustworhy computing; web server security; service availability; intrusion tolerance; automatic recovery;
D O I
10.1109/NCA.2009.37
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
We present a virtualization-based web server system, a prototype, and experimental results for providing uninterrupted web services in the presence of intrusion attacks and software faults. The proposed system utilizes replicated virtual servers managed by a closed-loop feedback controller. Using anomaly and intrusion sensor outputs, the controller calculates cost-weighted actions against threats to ensure web service continuity. We will show that the system can handle broad classes of attacks. Experiment results show that our prototype retains 60% of its peak throughput under 8 DoS attacks per second over extended periods.
引用
收藏
页码:114 / 117
页数:4
相关论文
共 50 条
  • [21] Realizing the vision for web services: Strategies for dealing with imperfect standards
    Sanjay Gosain
    Information Systems Frontiers, 2007, 9 : 53 - 67
  • [22] Realizing the vision for web services: Strategies for dealing with imperfect standards
    Gosain, Sanjay
    INFORMATION SYSTEMS FRONTIERS, 2007, 9 (01) : 53 - 67
  • [23] Intrusion Tolerance of Stealth DoS Attacks to Web Services
    Ficco, Massimo
    Rak, Massimiliano
    INFORMATION SECURITY AND PRIVACY RESEARCH, 2012, 376 : 579 - 584
  • [24] REALIZING WEB APPLICATION VULNERABILITY ANALYSIS VIA AVDL
    Le, Ha-Thanh
    Loh, Peter Kok Keong
    ICEIS 2008: PROCEEDINGS OF THE TENTH INTERNATIONAL CONFERENCE ON ENTERPRISE INFORMATION SYSTEMS, VOL ISAS-2: INFORMATION SYSTEMS ANALYSIS AND SPECIFICATION, VOL 2, 2008, : 259 - 265
  • [25] UCLPv2: A network virtualization framework built on web services
    Grasa, Eduard
    Junyent, Gabriel
    Figuerola, Sergi
    Lopez, Albert
    Savoie, Michel
    IEEE COMMUNICATIONS MAGAZINE, 2008, 46 (03) : 126 - 134
  • [26] Evaluating SNMP, NETCONF, and RESTful Web Services for Router Virtualization Management
    da Paz Ferraz Santos, Paulo Roberto
    Esteves, Rafael Pereira
    Granville, Lisandro Zambenedetti
    PROCEEDINGS OF THE 2015 IFIP/IEEE INTERNATIONAL SYMPOSIUM ON INTEGRATED NETWORK MANAGEMENT (IM), 2015, : 122 - 130
  • [27] Towards intelligent web services for-automating medical service composition
    Lee, Y
    Patel, C
    Chun, SA
    Geller, J
    IEEE INTERNATIONAL CONFERENCE ON WEB SERVICES, PROCEEDINGS, 2004, : 384 - 391
  • [28] An approach for realizing privacy-preserving web-based services
    Xu, W. (weixu@cs.sunysb.edu), 1600, World Wide Web Consortium (W3C); Hitachi, Ltd.; NEC; Yahoo; Fuji Xerox Co., Ltd. (Association for Computing Machinery, 1515 Broadway, 17th Floor, New York, NY 10036-5701, United States):
  • [29] Using EMBL-EBI Services via Web Interface and Programmatically via Web Services
    Madeira, Fabio
    Madhusoodanan, Nandana
    Lee, Joonheung
    Eusebi, Alberto
    Niewielska, Ania
    Tivey, Adrian R. N.
    Meacham, Stuart
    Lopez, Rodrigo
    Butcher, Sarah
    CURRENT PROTOCOLS, 2024, 4 (06):
  • [30] A Method for Intrusion Detection in Web Services Based on Time Series
    Shirani, Paria
    Azgomi, Mohammad Abdollahi
    Alrabaee, Saed
    2015 IEEE 28TH CANADIAN CONFERENCE ON ELECTRICAL AND COMPUTER ENGINEERING (CCECE), 2015, : 836 - 841
12345