Title :
Breaking the barriers between security mechanisms through the composition of Web Services: Towards a solution for the detection of multistage distributed attacks
Author :
Fagundes, Leonardo Lemes ; Gaspary, Luciano Paschoal
Author_Institution :
Postgrad. Program on Appl. Comput., Univ. of Vale do Rio dos Sinos, Sao Leopoldo, Brazil
Abstract :
In recent years, the number of planned and coordinated attacks, such as DDoS (Distributed Denial of Service), has increased significantly. These attacks, also known as multistage attacks, are composed of several stages and originated from multiple sources (hosts). Traditional Intrusion Detection Systems (IDSes) do not tackle adequately such attacks, mainly due to the lack of mechanisms for uniform communication with distinct security systems (e.g., other IDSes, firewalls, etc.) and for the correlation, in a timely manner, of the observed events. In a first attempt to address the aforementioned issues, in this paper we propose a solution for the detection of multistage, distributed attacks based on the creation of security oriented Web Services. The solution comprises two key components: (i) a novel language for the specification of the diverse stages that compose a multistage attack, and (ii) SECCOMPOSE, a service oriented architecture for multistage, distributed attack detection.
Keywords :
Web services; security of data; software architecture; specification languages; SECCOMPOSE; Web Services; multistage distributed attacks detection; security mechanisms; service oriented architecture; specification language; Communication system security; Computer crime; Distributed computing; File systems; Informatics; Information retrieval; Intrusion detection; Sockets; Web server; Web services;
Conference_Titel :
Computers and Communications, 2009. ISCC 2009. IEEE Symposium on
Conference_Location :
Sousse
Print_ISBN :
978-1-4244-4672-8
Electronic_ISBN :
1530-1346
DOI :
10.1109/ISCC.2009.5202369
