Detecting DoS Attack in web services by using an adaptive multiagent solution

Cristian Iván Pinzón Trejos; Nicholas Beliz; José Carlos Rangel Ortiz; Chi Shun Hong

Ayuda

Detecting DoS Attack in web services by using an adaptive multiagent solution

PINZÓN, Cristian Iván ^[1] ; BELIZ, Nicholas ^[1] ; RANGEL, José Carlos ^[1] ; HONG, Chi Shun ^[1]
1. [1] Universidad Tecnológica de Panamá
  
  Universidad Tecnológica de Panamá
  
  Panamá
Localización: ADCAIJ: Advances in Distributed Computing and Artificial Intelligence Journal, ISSN-e 2255-2863, Vol. 1, Nº. 2, 2012, págs. 57-63
Idioma: inglés
Enlaces
- Texto completo
Resumen
- One of the most frequent techniques of a DoS attack is to exhaust available resources (memory, CPU cycles, and bandwidth) on the host server. A SOAP message can be affected by a DoS attack if the incoming message has been either created or modified maliciously. Resources available in the server (memory and CPU cycles) of the provider can be drastically reduced or exhausted while a malicious SOAP message is being parsed. This article presents a solution based on an adaptive solution for dealing with DoS attacks in Web service environments. The solution proposes a multi-agent hierarchical architecture that implements a classification mechanism in two phases. Each phase incorporates a special type of CBR-BDI agent that functions as a classifier. In the first phase, a case-based reasoning (CBR) engine utilizes a decision tree to carry out an initial filter, and in the second phase, a CBR engine incorporates a neural network to complete the classification mechanism. A prototype of the architecture was developed and the results obtained are presented in this study.
Referencias bibliográficas
- BAJAJ, Siddharth. et al., Web Services Policy Framework (WS-Policy) http://www.ibm.com/developerworks/library/specification/ws-polfram 2004
- CARRASCOSA, C., BAJO, J., JULIAN, V., CORCHADO, J. M., BOTTI, V.: Hybrid multi-agent architecture as a real-time problem-solving model, Expert...
- CORCHADO, Juan M., BAJO, Javier, ABRAHAM, Ajith: GerAmi: Improving Healthcare Delivery in Geriatric Residences, IEEE Intelligent Systems....
- DAGDEE, Nirmal, THAKAR, Urjita: Intrusion Attack Pattern Analysis and Signature Extraction for Web Services Using Honeypots, In: First International...
- GRUSCHKA, Nils. & LUTTENBERGER, Norbert. Protecting Web Services from DoS Attacks by SOAP Message Validation, In: Security and Privacy...
- JENSEN, Meiko, GRUSCHKA, Nils, HERKENHONER, Ralph, LUTTENBERGER, Norbert: SOA and Web Services: New Technologies, New Standards - New Attacks,...
- LAZA, Rosalia, PAVON, Reyes, CORCHADO, Juan M.: A Reasoning Model for CBR_BDI Agents Using an Adaptable Fuzzy Inference System, In: 10th Conference...
- LOH, Yin-Sonn, YAU, Wei-Cheun, WONG, Chien-Thang, HO, Wai-Chuen: Design and Implementation of an XML Firewal, In: Computational Intelligence...
- OASIS. Web Services Security: SOAP Message Security 1.1 (WS-Security 2004), OASIS Standard 2004. http://docs.oasis-open.org/wss/2004/01/oasis-200401-...
- WEERAWARANA, Sanjiva, CURBERA, Francisco, LEYMANN, Frank, STOREY, Tony and FERGUSON, Donald F.: Web Services Platform Architecture: SOAP,...
- WS-Trust , Web Services Trust Language. http://specs.xmlsoap.org/ ws/2005/02/trust/WS-Trust.pdf
- YEE, Chan Gaik., SHIN, Wong Hui., RAO, G. S. V. R. K: An Adaptive Intrusion Detection and Prevention (ID/IP) Framework for Web Services, In:...