Adaptation Policies for Web Server Intrusion-Tolerant System

Eul Gyu IM
Hoh Peter IN
Dae-Sik CHOI
Yong Ho SONG

IEICE TRANSACTIONS on Communications   Vol.E88-B    No.8    pp.3462-3465
Publication Date: 2005/08/01
Online ISSN: 
DOI: 10.1093/ietcom/e88-b.8.3462
Print ISSN: 0916-8516
Type of Manuscript: LETTER
Category: Internet
intrusion tolerance,  survivability,  web services,  adaptation,  request or response filtering,  

Full Text: PDF(179.9KB)>>
Buy this Article

The emergence of intelligent and sophisticated attack techniques makes web services more vulnerable than ever which are becoming an important business tool in e-commerce. Many techniques have been proposed to remove the security vulnerabilities, yet have limitations. This paper proposes an adaptive mechanism for a web-server intrusion-tolerant system (WITS) to prevent unknown patterns of attacks by adapting known attack patterns. SYN flooding attacks and their adaptive defense mechanisms are simulated as a case study to evaluate the performance of the proposed adaptation mechanism.