A New Architecture for Intrusion-Tolerant Web Services Based on Design Diversity Techniques
Journal Title: Journal of Information Systems and Telecommunication - Year 2015, Vol 3, Issue 4
Abstract
Web services are the realization of service-oriented architecture (SOA). Security is an important challenge of SOAP-based Web services. So far, several security techniques and standards based on traditional security mechanisms, such as encryption and digital signature, have been proposed to enhance the security of Web services. The aim has been to employ the concepts and techniques of fault-tolerant computing to make Web services more secure, which is called intrusion-tolerance. Intrusion-tolerance means the continuous delivery of services in presence of security attacks, which can be used as a fundamental approach for enhancing the security of Web services. In this paper, we propose a novel architecture for intrusion-tolerant Web services with emphasis on intrusion-tolerance concepts and composite Web service techniques. The proposed architecture, which is called design-diverse intrusion-tolerant Web service (DDITWS), takes the advantages of design diversity techniques. For Web service composition, BPEL4WS is used. Formal modeling and verification of the proposed architecture is performed using colored Petri nets (CPNs) and CPN Tools. We have checked the behavioral properties of the model to ensure its correctness. The reliability and security evaluation of the proposed architecture is also performed using a stochastic Petri net (SPN) model and the SHARPE tool. The results show that the reliability and mean-time-to-security-failure (MTTSF) in the proposed architecture are improved.
Authors and Affiliations
Sadegh Bejani, Mohammad Abdollahi Azgomi
Keywords
Related Articles
- EP ID EP184622
- DOI 10.7508/jist.2015.04.005
- Views 136
- Downloads 0
Facial Expression Recognition Using Texture Description of Displacement Image
In recent years, facial expression recognition, as an interesting problem in computer vision has been performed by means of static and dynamic methods. Dynamic information plays an important role in recognizing facial ex...
Accurate Fire Detection System for Various Environments using Gaussian Mixture Model and HSV Space
Smart and timely detection of fire can be very useful in coping with this phenomenon and its inhibition. Enhancing some image analysis methods such as converting RGB image to HSV image, smart selecting the threshold in f...
Cyclic Correlation-Based Cooperative Detection for OFDM-Based Primary Users
This paper develops a new robust cyclostationary detection technique for spectrum sensing of OFDM-based primary users (PUs). To do so, an asymptotically constant false alarm rate (CFAR) multi-cycle detector is proposed a...
Mitosis detection in breast cancer histological images based on texture features using AdaBoost
Counting mitotic figures present in tissue samples from a patient with cancer, plays a crucial role in assessing the patient’s survival chances. In clinical practice, mitotic cells are counted manually by pathologists in...
A New Finite Field Multiplication Algorithm to Improve Elliptic Curve Cryptosystem Implementations
This paper presents a new and efficient implementation approach for the elliptic curve cryptosystem (ECC) based on a novel finite field multiplication in GF(2m) and an efficient scalar multiplication algorithm. This new...