Automating Intrusion Response via Virtualization for Realizing Uninterruptible Web Services

被引:6
|
作者
Huang, Yih [1 ]
Ghosh, Anup K. [1 ]
机构
[1] George Mason Univ, Ctr Secure Informat Syst, Fairfax, VA 22030 USA
来源
2009 8TH IEEE INTERNATIONAL SYMPOSIUM ON NETWORK COMPUTING AND APPLICATIONS | 2009年
关键词
trustworhy computing; web server security; service availability; intrusion tolerance; automatic recovery;
D O I
10.1109/NCA.2009.37
中图分类号
TP3 [计算技术、计算机技术];
学科分类号
0812 ;
摘要
We present a virtualization-based web server system, a prototype, and experimental results for providing uninterrupted web services in the presence of intrusion attacks and software faults. The proposed system utilizes replicated virtual servers managed by a closed-loop feedback controller. Using anomaly and intrusion sensor outputs, the controller calculates cost-weighted actions against threats to ensure web service continuity. We will show that the system can handle broad classes of attacks. Experiment results show that our prototype retains 60% of its peak throughput under 8 DoS attacks per second over extended periods.
引用
收藏
页码:114 / 117
页数:4
相关论文
共 50 条
  • [41] Automating Web-based Infrastructure Management via Contextual Imitation Learning
    Lin, Jieyu
    Geng, Hongxiang
    Leon-Garcia, Alberto
    2021 22ND ASIA-PACIFIC NETWORK OPERATIONS AND MANAGEMENT SYMPOSIUM (APNOMS), 2021, : 184 - 189
  • [42] Serving CityGML via Web Feature Services in the OGC Web Services - Phase 4 Testbed
    Curtis, Eddie
    ADVANCES IN 3D GEOINFORMATION SYSTEMS, 2008, : 331 - 340
  • [43] Remote Control of Asterisk via Web Services
    Kapicak, Lukas
    Nevlud, Pavel
    Zdralek, Jaroslav
    Dubec, Patrik
    Plucar, Jan
    2011 34TH INTERNATIONAL CONFERENCE ON TELECOMMUNICATIONS AND SIGNAL PROCESSING (TSP), 2011, : 27 - 30
  • [44] Robust web services via interaction contracts
    Lomet, D
    TECHNOLOGIES FOR E-SERVICES, 2005, 3324 : 1 - 14
  • [45] RECOGNIZE TRUSTWORTHY WEB SERVICES VIA INSTITUTIONS
    Jiao, Han
    Liu, Jixue
    Li, Jiuyong
    ICEIS 2011: PROCEEDINGS OF THE 13TH INTERNATIONAL CONFERENCE ON ENTERPRISE INFORMATION SYSTEMS, VOL 4, 2011, : 187 - 190
  • [46] Multilingual processing of speech via web services
    Kisler, Thomas
    Reichel, Uwe
    Schiel, Florian
    COMPUTER SPEECH AND LANGUAGE, 2017, 45 : 326 - 347
  • [47] Autonomic delivery of expertise via web services
    Fichtelman, MJ
    DR DOBBS JOURNAL, 2004, 29 (10): : 28 - +
  • [48] Enabling persistent Web services via commitments
    Wan F.
    Singh M.P.
    Information Technology and Management, 2005, 6 (1) : 41 - 60
  • [49] Web Services Testing via Goal and Mutation
    Jokhio, M. Shaban
    Dobbie, Gillian
    Sun, Jing
    Hu, Tianming
    2013 18TH INTERNATIONAL CONFERENCE ON ENGINEERING OF COMPLEX COMPUTER SYSTEMS (ICECCS), 2013, : 159 - 162
  • [50] Automated testing and response analysis of web services
    Martin, Evan
    Basu, Suranjana
    Xie, Tao
    2007 IEEE INTERNATIONAL CONFERENCE ON WEB SERVICES, PROCEEDINGS, 2007, : 647 - +
12345