For Full-Text PDF, please login, if you are a member of IEICE,|
or go to Pay Per View on menu list, if you are a nonmember of IEICE.
Adaptation Policies for Web Server Intrusion-Tolerant System
Eul Gyu IM
Hoh Peter IN
Yong Ho SONG
IEICE TRANSACTIONS on Communications
Publication Date: 2005/08/01
Print ISSN: 0916-8516
Type of Manuscript: LETTER
intrusion tolerance, survivability, web services, adaptation, request or response filtering,
Full Text: PDF(179.9KB)>>
The emergence of intelligent and sophisticated attack techniques makes web services more vulnerable than ever which are becoming an important business tool in e-commerce. Many techniques have been proposed to remove the security vulnerabilities, yet have limitations. This paper proposes an adaptive mechanism for a web-server intrusion-tolerant system (WITS) to prevent unknown patterns of attacks by adapting known attack patterns. SYN flooding attacks and their adaptive defense mechanisms are simulated as a case study to evaluate the performance of the proposed adaptation mechanism.