Automating Intrusion Response via Virtualization for Realizing Uninterruptible Web Services

被引:6
|
作者
Huang, Yih [1 ]
Ghosh, Anup K. [1 ]
机构
[1] George Mason Univ, Ctr Secure Informat Syst, Fairfax, VA 22030 USA
来源
2009 8TH IEEE INTERNATIONAL SYMPOSIUM ON NETWORK COMPUTING AND APPLICATIONS | 2009年
关键词
trustworhy computing; web server security; service availability; intrusion tolerance; automatic recovery;
D O I
10.1109/NCA.2009.37
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
We present a virtualization-based web server system, a prototype, and experimental results for providing uninterrupted web services in the presence of intrusion attacks and software faults. The proposed system utilizes replicated virtual servers managed by a closed-loop feedback controller. Using anomaly and intrusion sensor outputs, the controller calculates cost-weighted actions against threats to ensure web service continuity. We will show that the system can handle broad classes of attacks. Experiment results show that our prototype retains 60% of its peak throughput under 8 DoS attacks per second over extended periods.
引用
收藏
页码:114 / 117
页数:4
相关论文
共 50 条
  • [31] Intrusion detection of DoS/DDoS and probing attacks for web services
    Zheng, J
    Hu, MZ
    ADVANCES IN WEB-AGE INFORMATION MANAGEMENT, PROCEEDINGS, 2005, 3739 : 333 - 344
  • [32] Automating GUI Response Time Measurements in Mobile and Web Applications
    Quental, Nivia Cruz
    Siebra, Clauirton de Albuquerque
    Quintino, Jonysberg Peixoto
    Florentin, Fabiana
    Bueno da Silva, Fabio Queda
    de Medeiros Santos, Andre Luis
    2019 IEEE/ACM 14TH INTERNATIONAL WORKSHOP ON AUTOMATION OF SOFTWARE TEST (AST 2019), 2019, : 35 - 41
  • [33] AUTOMATING TEST CASE GENERATION FOR REQUIREMENTS SPECIFICATION FOR PROCESSES ORCHESTRATING WEB SERVICES
    Sapiecha, Krzysztof
    Grela, Damian
    ICEIS 2008: PROCEEDINGS OF THE TENTH INTERNATIONAL CONFERENCE ON ENTERPRISE INFORMATION SYSTEMS, VOL ISAS-1: INFORMATION SYSTEMS ANALYSIS AND SPECIFICATION, VOL 1, 2008, : 381 - 384
  • [34] Automating Services for Spacecraft Conceptual Design via an Enterprise Service Bus
    Caetano de Souza, Ariana C.
    dos Santos, Walter A.
    IMPROVING COMPLEX SYSTEMS TODAY, 2011, : 159 - 166
  • [35] Automating DAML-S web services composition using SHOP2
    Wu, D
    Parsia, B
    Sirin, E
    Hendler, J
    Nau, D
    SEMANTIC WEB - ISWC 2003, 2003, 2870 : 195 - 210
  • [36] Automating the Development of Device-Aware Web Services: A Model-Driven Approach
    Achilleos, Achilleas
    Paspallis, Nearchos
    Papadopoulos, George A.
    2011 35TH IEEE ANNUAL INTERNATIONAL COMPUTER SOFTWARE AND APPLICATIONS CONFERENCE (COMPSAC), 2011, : 535 - 540
  • [37] Automating bibliometric analyses using Taverna scientific workflows: A tutorial on integrating Web Services
    Guler, Arzu Tugce
    Waaijer, Cathelijn J. F.
    Mohammed, Yassene
    Palmblad, Magnus
    JOURNAL OF INFORMETRICS, 2016, 10 (03) : 830 - 841
  • [38] Automating the Integration of Services for the Web Processing of Environmental Monitoring Data with Distributed Scientific Applications
    I. V. Bychkov
    A. G. Feoktistov
    S. A. Gorsky
    R. O. Kostromin
    R. K. Fedorov
    Optoelectronics, Instrumentation and Data Processing, 2022, 58 : 373 - 380
  • [39] Automating the Integration of Services for the Web Processing of Environmental Monitoring Data with Distributed Scientific Applications
    Bychkov, I. V.
    Feoktistov, A. G.
    Gorsky, S. A.
    Kostromin, R. O.
    Fedorov, R. K.
    OPTOELECTRONICS INSTRUMENTATION AND DATA PROCESSING, 2022, 58 (04) : 373 - 380
  • [40] Making the Web of Data Available Via Web Feature Services
    Jones, Jim
    Kuhn, Werner
    Kessler, Carsten
    Scheider, Simon
    CONNECTING A DIGITAL EUROPE THROUGH LOCATION AND PLACE, 2014, : 341 - 361
12345