Abstract
Internet becomes more and more popular, and most companies and institutes use web services for e-business to promote their business. As results, Internet and web services become core infrastructure for a business and become more and more important, but attacks against web services increase as the popularity of web services grows. Therefore, there are increasing needs of undisrupted web services despite of attacks. In this paper, contrast to previous approaches that detect and filter known attacks using known vulnerabilities and patterns, we proposed an intrusion tolerant system that can tolerate known vulnerabilities as well as unknown vulnerabilities by providing adaptation, redundancy and diversity. After detecting attacks, the system provides continuous web services using server adaptation and request filtering.
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsPreview
Unable to display preview. Download preview PDF.
References
Computer Security Institute/Federal Bureau of Investigation: Computer crime and security survey (2001)
Symantec Corp.: Symantec internet security threat report, vol. i (2002)
Ellison, B., Fisher, D.A., Linger, R.C., Lipson, H.F., Longstaff, T., Mead, N.R.: Survivable network systems: An emerging discipline. Technical Report CMU/SEI- 97-TR-013, Carnegie-Mellon University Software Engineering Institute (1997)
Pal, P., Webber, F., Schantz, R.E., Loyall, J.P.: Intrusion tolerant systems. In: Proceedings of the IEEE Information Survivability Workshop, Boston, Massachusetts, U.S.A. (2000)
Lee, W., Fan, W.: Mining system audit data: opportunities and challenges. ACM SIGMOD Record 30, 35–44 (2001)
Pal, P., Webber, F., Schantz, R.: Survival by defense-enabling. In: Proceedings of the 2001 workshop on New security paradigms, pp. 71–78. ACM Press, New York (2001)
Rathi, M., Anjum, F., Zbib, R., Ghosh, A., Umar, A.: Investigation of intrusion tolerance for COTS middleware. In: Proceedings of the IEEE International Conference on Communications 2002, vol. 2, pp. 1169–1173 (2002)
Stavridou, V., Dutertre, B., Riemenschneider, R.A., Saidi, H.: Intrusion tolerant software architectures. In: Proceedings of the DARPA Information Survivability Conference & Exposition (DISCEX) 2001, vol. 2, pp. 230–241 (2001)
Wang, F., Upppalli, R.: SITAR: a scalable instrusion-tolerant architecture for distributed services - a technology summary. In: Proceedings of the DARPA Information Survivability Conference & Exposition (DISCEX) 2003, vol. 2, pp. 153–155 (2003)
Wang, R., Wang, F., Byrd, G.T.: Design and implementation of acceptance monitor for building scalable intrusion tolerant system. In: Proceedings of the Tenth International Conference on Computer Communications and Networks, Scottsdale, AZ, USA, pp. 200–205 (2001)
Wang, F., Gong, F., Sargor, C., Goseva-Popstojanova, K., Trivedi, K., Jou, F.: SITAR: A scalable intrusion-tolerant architecture for distributed services. In: Proceedings of the 2001 IEEE Workshop on Information Assurance and Security, United States Military Academy, West Point, NY, pp. 38–45 (2001)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2004 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Choi, DS., Im, E.G., Lee, CW. (2004). Intrusion-Tolerant System Design for Web Server Survivability. In: Chae, KJ., Yung, M. (eds) Information Security Applications. WISA 2003. Lecture Notes in Computer Science, vol 2908. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-540-24591-9_10
Download citation
DOI: https://doi.org/10.1007/978-3-540-24591-9_10
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-20827-3
Online ISBN: 978-3-540-24591-9
eBook Packages: Springer Book Archive