Skip to main content
Springer Nature Link
Log in

Web Application Security Gateway with Java Non-blocking IO

  • Conference paper
Next Generation Information Technologies and Systems (NGITS 2006)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 4032))

  • 494 Accesses

Abstract

We present the design and implementation of the WebDaemon Security Gateway (WDSG) with the techniques of event-driving, non-blocking IO multiplexing, secure cookies, SSL and caches based on PKI framework and role-based access control (RBAC) policy. It not only supports massive concurrency and avoids the pitfalls of traditional block I/O based design, but also is able to secure all the resources of an enterprise and reduce the cost and complexity of administration.

This work was supported partially by NSFC (grant numbers 60373002 and 60496322) and by a NKBRPC (2004CB318000)”.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Similar content being viewed by others

References

  1. Zhao, C., Chen, Y., Xu, D., Heilili, N., Lin, Z.: Integrative Security Management for Web-Based Enterprise Applications. In: Fan, W., Wu, Z., Yang, J. (eds.) WAIM 2005. LNCS, vol. 3739, pp. 618–625. Springer, Heidelberg (2005)

    Chapter  Google Scholar 

  2. Ferraiolo, D., Sandhu, R., Gavrila, S., Kuhn, D., Chandramoli: Proposed nist standard for role-based access control. ACM Transactions on Information and System Security (TISSEC) 4, 224–274 (2001)

    Article  Google Scholar 

  3. Park, J., Sandhu, R.: Secure cookies on the web. IEEE Internet Computing 4, 36–45 (2000)

    Article  Google Scholar 

  4. SUN New I/O APIs, http://java.sun.com/j2se/1.4.2/docs/guide/nio/

  5. Osborn, S., Sandhu, R., Munawer, Q.: Configuring role-based access control to enforce mandatory and discretionary access control policies. ACM Transactions on Information and System Security 3, 85–106 (2000)

    Article  Google Scholar 

  6. Housley, R., Ford, W., Polk, W., Solo, D.: Citicorp: Internet x. 509 public key infrastructure certificate and crl profile, network working group request for comments: 2459 category. Standards track (1999), http://www.ietf.org/rfc/rfc2459.txt

  7. Sandhu, R., Coyne, E., Feinstein, H., Youman, C.: Role-based access control models. IEEE Computer 29, 38–47 (1996)

    Google Scholar 

  8. Al-Kahtani, M.A., Sandhu, R.: A model for attribute-based user-role assignment. In: Proceedings of the 18th Annual Computer Security Applications Conference, Las Vegas, Nevada, USA, pp. 353–362 (2002)

    Google Scholar 

  9. Rodriguez, P., Sibal, S.: Spread: scalable platform for reliable and efficient automated distribution. The International Journal of Computer and Telecommunications Networking 33, 33–49 (2000)

    Google Scholar 

  10. Beltran, V., Carrera, D., Torres, J., Ayguade, E.: Evaluating the scalability of java event-driven web server. Intelligent Computer Communication and Processing 0, 134–142 (2004)

    Google Scholar 

  11. American National Standards Institute, Inc. Role-based access control. ANSI INCITS 359-2004, http://csrc.nist.gov/rbac/

Download references

Author information

Authors and Affiliations

  1. LMAM, Department of Information Science, Peking University, Beijing, 100871, China

    Zhenxing Luo, Nuermaimaiti Heilili, Dawei XU, Chen Zhao & Zuoquan Lin

Authors
  1. Zhenxing Luo
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Nuermaimaiti Heilili
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Dawei XU
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Chen Zhao
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Zuoquan Lin
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. IBM Haifa Research Lab, 31905, Mount Carmel, Haifa, Israel

    Opher Etzion

  2. University of Haifa, Haifa, Israel

    Tsvi Kuflik

  3. Information and Software Engineering Department, George Mason University, VA 22030, Fairfax, USA

    Amihai Motro

Rights and permissions

Reprints and permissions

Copyright information

© 2006 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Luo, Z., Heilili, N., XU, D., Zhao, C., Lin, Z. (2006). Web Application Security Gateway with Java Non-blocking IO. In: Etzion, O., Kuflik, T., Motro, A. (eds) Next Generation Information Technologies and Systems. NGITS 2006. Lecture Notes in Computer Science, vol 4032. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11780991_9

Download citation

  • DOI: https://doi.org/10.1007/11780991_9

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-35472-7

  • Online ISBN: 978-3-540-35473-4

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics