The Community for Technology Leaders
RSS Icon
Subscribe
Issue No.09 - September (2003 vol.14)
pp: 841-850
Dongho Kim , IEEE
ABSTRACT
<p><b>Abstract</b>—Current intrusion detection systems work in isolation from access control for the application the systems aim to protect. The lack of coordination and interoperation between these components prevents detecting and responding to ongoing attacks in real-time before they cause damage. To address this, we apply dynamic authorization techniques to support fine-grained access control and application level intrusion detection and response capabilities. This paper describes our experience with integration of the Generic Authorization and Access Control API (GAA-API) to provide dynamic intrusion detection and response for the Apache Web server. The GAA-API is a generic interface which may be used to enable such dynamic authorization and intrusion response capabilities for many applications.</p>
INDEX TERMS
Access control, authorization, security policy, intrusion detection, Apache Web server.
CITATION
Tatyana Ryutov, Clifford Neuman, Dongho Kim, Li Zhou, "Integrated Access Control and Intrusion Detection for Web Servers", IEEE Transactions on Parallel & Distributed Systems, vol.14, no. 9, pp. 841-850, September 2003, doi:10.1109/TPDS.2003.1233707
31 ms
(Ver 2.0)

Marketing Automation Platform Marketing Automation Tool