Intrusion-tolerant system design for web server survivability

Dae Sik Choi, Eul Gyu Im, Cheol Won Lee

Research output: Contribution to journalArticle

5 Citations (Scopus)

Abstract

Internet becomes more and more popular, and most companies and institutes use web services for e-business to promote their business. As results, Internet and web services become core infrastructure for a business and become more and more important, but attacks against web services increase as the popularity of web services grows. Therefore, there are increasing needs of undisrupted web services despite of attacks. In this paper, contrast to previous approaches that detect and filter known attacks using known vulnerabilities and patterns, we proposed an intrusion tolerant system that can tolerate known vulnerabilities as well as unknown vulnerabilities by providing adaptation, redundancy and diversity. After detecting attacks, the system provides continuous web services using server adaptation and request filtering.

Original languageEnglish
Pages (from-to)124-134
Number of pages11
JournalLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume2908
StatePublished - 2004 Dec 1

Fingerprint

Survivability
Web Server
Web services
Web Services
System Design
Servers
Systems analysis
Vulnerability
Attack
Industry
Internet
Continuous System
Electronic Commerce
Redundancy
Server
Filtering
Infrastructure
Filter
Unknown

Keywords

  • Intrusion tolerance
  • Survivability
  • Web services

Cite this

@article{18b51ce64fac47f985f61ae96eca117c,
title = "Intrusion-tolerant system design for web server survivability",
abstract = "Internet becomes more and more popular, and most companies and institutes use web services for e-business to promote their business. As results, Internet and web services become core infrastructure for a business and become more and more important, but attacks against web services increase as the popularity of web services grows. Therefore, there are increasing needs of undisrupted web services despite of attacks. In this paper, contrast to previous approaches that detect and filter known attacks using known vulnerabilities and patterns, we proposed an intrusion tolerant system that can tolerate known vulnerabilities as well as unknown vulnerabilities by providing adaptation, redundancy and diversity. After detecting attacks, the system provides continuous web services using server adaptation and request filtering.",
keywords = "Intrusion tolerance, Survivability, Web services",
author = "Choi, {Dae Sik} and Im, {Eul Gyu} and Lee, {Cheol Won}",
year = "2004",
month = "12",
day = "1",
language = "English",
volume = "2908",
pages = "124--134",
journal = "Lecture Notes in Computer Science",
issn = "0302-9743",

}

TY - JOUR

T1 - Intrusion-tolerant system design for web server survivability

AU - Choi, Dae Sik

AU - Im, Eul Gyu

AU - Lee, Cheol Won

PY - 2004/12/1

Y1 - 2004/12/1

N2 - Internet becomes more and more popular, and most companies and institutes use web services for e-business to promote their business. As results, Internet and web services become core infrastructure for a business and become more and more important, but attacks against web services increase as the popularity of web services grows. Therefore, there are increasing needs of undisrupted web services despite of attacks. In this paper, contrast to previous approaches that detect and filter known attacks using known vulnerabilities and patterns, we proposed an intrusion tolerant system that can tolerate known vulnerabilities as well as unknown vulnerabilities by providing adaptation, redundancy and diversity. After detecting attacks, the system provides continuous web services using server adaptation and request filtering.

AB - Internet becomes more and more popular, and most companies and institutes use web services for e-business to promote their business. As results, Internet and web services become core infrastructure for a business and become more and more important, but attacks against web services increase as the popularity of web services grows. Therefore, there are increasing needs of undisrupted web services despite of attacks. In this paper, contrast to previous approaches that detect and filter known attacks using known vulnerabilities and patterns, we proposed an intrusion tolerant system that can tolerate known vulnerabilities as well as unknown vulnerabilities by providing adaptation, redundancy and diversity. After detecting attacks, the system provides continuous web services using server adaptation and request filtering.

KW - Intrusion tolerance

KW - Survivability

KW - Web services

UR - http://www.scopus.com/inward/record.url?scp=35048833744&partnerID=8YFLogxK

M3 - Article

AN - SCOPUS:35048833744

VL - 2908

SP - 124

EP - 134

JO - Lecture Notes in Computer Science

JF - Lecture Notes in Computer Science

SN - 0302-9743

ER -