Title :
Towards Detecting the Interaction Vulnerabilities in Large Distributed System
Author :
Jinjing, Zhao ; Gang, Zhao ; Yan, Wen ; Xiang, Li
Author_Institution :
Beijing Inst. of Syst. Eng., Beijing, China
fDate :
June 29 2010-July 1 2010
Abstract :
In this paper, we proposed a novel approach, called LDS-IVD, to model the entity interaction vulnerabilities in Large Distributed System (LDS) which results from the absence of necessary security mechanisms. LDS-IVD constructs a general interaction security mechanism description language, named with IS-LAN. By analyzing the key resources in LDS with the finite state machine, IS-LAN provides the capability of discovering and validating the entity interaction vulnerabilities. In this way, IDS-IVD can find out the negative influence on the resource confidentiality, integrity and availability incurred by the deficiency of security mechanisms, and can detect the interaction vulnerabilities along with the attack patterns.
Keywords :
computer network security; distributed processing; finite state machines; IS-LAN; LDS-IVD approach; distributed system; entity interaction vulnerability; finite state machine; interaction security mechanism description language; security mechanism; Authentication; Authorization; Availability; Encryption; Libraries; Servers; FSM; Large distributed system; entity interaction model; vulnerability analysis;
Conference_Titel :
Computer and Information Technology (CIT), 2010 IEEE 10th International Conference on
Conference_Location :
Bradford
Print_ISBN :
978-1-4244-7547-6
DOI :
10.1109/CIT.2010.475
