DoubleGuard: Detecting Intrusions in Multitier Web Applications

Le, Meixing; Stavrou, Angelos; Kang, Brent Byunghoon

doi:10.1109/tdsc.2011.59

Cited by 42 publications

(27 citation statements)

References 22 publications

(19 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…IDS keep track of the different possible request from the user and make query to monitor these attacks [9]. It can be treated as an immune system for the system.…”

Section: Intrusion Detection System (Ids)mentioning

confidence: 99%

Study on Cloud Security Risk and Remedy

Aich¹,

Sen²

2015

IJGDC

View full text Add to dashboard Cite

“…IDS keep track of the different possible request from the user and make query to monitor these attacks [9]. It can be treated as an immune system for the system.…”

Section: Intrusion Detection System (Ids)mentioning

confidence: 99%

Study on Cloud Security Risk and Remedy

Aich¹,

Sen²

2015

IJGDC

View full text Add to dashboard Cite

“…The Communication between User Interface (UI) Server and Database (DB) Server becomes the common architecture in the wholesome internet applications. Mixing Le, AngelosStavrou [4] analyzed the omnipresent nature of internet based client server application and a Double Guard Intrusion Detection System with light weight virtualization is adapted to prevent the attacks over multi tiered web services [1], [2]. Using this technique, an effective two level scrutinization which includes a front end validation and backend validation and an intermediate ID between the two tiers will take care of communicating in the proper direction to safeguard the system.…”

Section: Literature Surveymentioning

confidence: 99%

XSD DDoS Trace Handler in Web Service Environment

Murugan¹,

Vivekanandan²

2015

JSW

View full text Add to dashboard Cite

Web services became a crucial tool for most of the Internet and Intranet applications and distributed systems due to its interoperability. As the usage is increased, performance and the security of Web services are facing a great impact due to DDoS attacks, XML Injection, XSS Injection etc. The hacker's major target is either to track the data down the line or to break the network bandwidth and feed in vulnerable data to collapse the system. Existing trends follow a stream based approach with encryption techniques to increase robustness, or a Double Guard Intrusion Detection System with light weight virtualization is adapted to prevent the attacks over multitier web services. Various prevalent techniques focus towards securing data, increasing robustness and improve the network bandwidth. But there is no focus towards the validation of the service request. The proposed XSD DDOS Trace Handler approach is an innovative framework that uses the concepts of Validate Handler for the input request based on input data standards and request timestamps from the specific host. It also implements the "Totient Encryption Algorithm" in the case of XML Injection Attacks wherein a clean monitoring of the source attributes is performed. This is achieved with a dynamic charting technique that overcomes the predominant injection and DDOS attacks in the service oriented architecture.

show abstract

“…monitoring webserver at front-end and databases at backend but this approach has hindered due to dependency on static websites [20]. For enhanced detection rates, Discontiguous system calls are used but the overhead of building datasets offline with confined trained data is there [21].…”

Section: Related Workmentioning

confidence: 99%

Intrusion Detection by Forensic Method in Private Cloud using Eucalyptus

Patil¹,

Ainapure²

2014

IJCA

View full text Add to dashboard Cite

Cloud computing has become the mature term which has dealt from single user to large enterprises. The private cloud platform building framework Eucalyptus has great pace of development within short span of time. Achieving AWS (Amazon Web Services) compatible features development along with scalability and sustainability has introduced several issues have an adverse effect on the cloud system. In continuing with this, the chances of intrusion also increase evading traditional mechanism of security. Issues have been introduced due to seamless integration of such structure with computing technologies and so on. By taking advantage of such flaws, the Cybercrime is rapidly increasing in this field. The proposed work is regarded with Digital forensics technique and intrusion detection mechanism. In this scope of work, an experimental setup of Eucalyptus with Snort NIDS (Network Intrusion Detection System) to detect attacks using snort rules has been created. The Eucalyptus Cloud components and Snort logs are exported to outside cloud network to rSyslog server which would be later analyzed by the Awstats log analyzer. Accompanied to above, this scope of work also addresses toward the issue of Eucalyptus to export its logs to the remote rSyslog server. This system will definitely help to reduce the strain on the Cloud forensics.

show abstract

DoubleGuard: Detecting Intrusions in Multitier Web Applications

Cited by 42 publications

References 22 publications

Study on Cloud Security Risk and Remedy

Study on Cloud Security Risk and Remedy

XSD DDoS Trace Handler in Web Service Environment

Intrusion Detection by Forensic Method in Private Cloud using Eucalyptus

Contact Info

Product

Resources

About