원문정보
초록
영어
Web services as fundamental building blocks for next generation distributed systems, play an important role in today enterprise application architectures. The flexibility and openness of the web services computing model can expose corporate data and business processes to security risks. To support critical applications, the existing web service models need to be extended to assure survivability. In this paper we present a multi-layer architecture for intrusion tolerant web services. The specific goal of the architecture is to use single version software fault tolerance concepts in case of malicious failures. We will also present a coloured Petri net model, which is used for the formal analysis of the proposed architecture.
목차
1 Introduction
2 The Proposed Architecture
2.1 Architecture Components
3 Detection and Prevention Tools
3.1 Web Service Firewall
3.2 Intrusion Detection
3.3 Intrusion Containment
3.4 Recovery and Reconfiguration
4 A Coloured Petri Net Model of the Architecture
5 Conclusions
References