Issue No.09 - September (2003 vol.14)
Clifford Neuman , IEEE
<p><b>Abstract</b>—Current intrusion detection systems work in isolation from access control for the application the systems aim to protect. The lack of coordination and interoperation between these components prevents detecting and responding to ongoing attacks in real-time before they cause damage. To address this, we apply dynamic authorization techniques to support fine-grained access control and application level intrusion detection and response capabilities. This paper describes our experience with integration of the Generic Authorization and Access Control API (GAA-API) to provide dynamic intrusion detection and response for the Apache Web server. The GAA-API is a generic interface which may be used to enable such dynamic authorization and intrusion response capabilities for many applications.</p>
Access control, authorization, security policy, intrusion detection, Apache Web server.
Clifford Neuman, Tatyana Ryutov, Li Zhou, "Integrated Access Control and Intrusion Detection for Web Servers", IEEE Transactions on Parallel & Distributed Systems, vol.14, no. 9, pp. 841-850, September 2003, doi:10.1109/TPDS.2003.1233707