• DocumentCode
    2049684
  • Title

    Intrusion Tolerant Approach for Denial of Service Attacks to Web Services

  • Author

    Ficco, Massimo ; Rak, Massimiliano

  • Author_Institution
    Dept. of Inf. Eng., Seconda Univ. di Napoli (SUN), Aversa, Italy
  • fYear
    2011
  • fDate
    21-24 June 2011
  • Firstpage
    285
  • Lastpage
    292
  • Abstract
    Intrusion Detection Systems are the major technology used for protecting information systems. However, they do not directly detect intrusion, but they only monitor the attack symptoms. Therefore, no assumption can be made on the outcome of the attack, no assurance can be assumed once the system is compromised. The intrusion tolerance techniques focus on providing minimal level of services, even when the system has been partially compromised. This paper presents an intrusion tolerant approach for Denial of Service attacks to Web Services. It focuses on the detection of attack symptoms as well as the diagnosis of intrusion effects in order to perform a proper reaction only if the attack succeeds. In particular, this work focuses on a specific Denial of Service attack, called Deeply-Nested XML. Preliminary experimental results show that the proposed approach results in a better performance of the Intrusion Detection Systems, in terms of increasing diagnosis capacity as well as reducing the service unavailability during an intrusion.
  • Keywords
    Web services; XML; computer network security; Deeply-Nested XML; Web services; denial of service attacks; information system protection; intrusion detection system; intrusion effect diagnosis; intrusion tolerance technique; Computer crime; Detectors; Engines; Monitoring; Simple object access protocol; XML; denial of service; diagnosis; intrusion recovery; intrusion tolerance; web services;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Data Compression, Communications and Processing (CCP), 2011 First International Conference on
  • Conference_Location
    Palinuro
  • Print_ISBN
    978-1-4577-1458-0
  • Electronic_ISBN
    978-0-7695-4528-8
  • Type

    conf

  • DOI
    10.1109/CCP.2011.44
  • Filename
    6061036