File(s) under permanent embargo
Detecting and mitigating HX-DoS attacks against cloud web services
conference contribution
posted on 2012-01-01, 00:00 authored by Ashley Chonka, Jemal AbawajyJemal AbawajyCyber-Physical Systems allow for the interaction of the cyber world and physical worlds using as a central service called Cloud Web Services. Cloud Web Services can sit well within three models of Cyber- Physical Systems, Software-as-a-Service (SaaS), Platform-as-a-Service (PaaS), and Infrastructure-as-a- Service (IaaS). With any Cyber-Physical system use Cloud Web Services it inherits a security problem, the HX-DoS attack. HX-DoS attack is a combination of HTTP and XML messages that are intentionally sent to flood and destroy the communication channel of the cloud service provider. The relevance of this research is that TCP/IP flood attacks are a common problem and a lot of research to mitigate them has previously been discussed. But HTTP denial of service and XML denial of service problem has only been addressed in a few papers. In this paper, we get closer to closing this gap on this problem with our new defence system called Pre- Decision, Advance Decision, Learning System (ENDER). In our previous experiments using our Cloud Protector, we were successful at detecting and mitigate 91% with a 9% false positive of HX-DoS attack traffic. In this paper, ENDER was able to improve upon this result by being trained and tested on the same data, but with a greater result of 99% detection and 1% false positive.
History
Event
IEEE International Conference on Networked-Based Information Systems (15th : 2012 : Melbourne, Victoria)Pagination
429 - 434Publisher
IEEE Computer SocietyLocation
Melbourne, VictoriaPlace of publication
Los Alamitos, Calif.Start date
2012-09-26End date
2012-09-28Language
engPublication classification
E1 Full written paper - refereedCopyright notice
2012, IEEEEditor/Contributor(s)
L Barolli, D Tamiar, T Enokido, W Rahayu, M TakizawaTitle of proceedings
NBIS 2012 : Proceedings of the 2012 International Conference on Network-Based Information SystemsUsage metrics
Categories
No categories selectedLicence
Exports
RefWorks
BibTeX
Ref. manager
Endnote
DataCite
NLM
DC