The Community for Technology Leaders
Green Image
Issue No. 01 - January-March (2009 vol. 6)
ISSN: 1545-5971
pp: 45-58
Ayda Saidane , University of Trento, Trento
Yves Deswarte , Université de Toulouse, Toulouse
Vincent Nicomette , Université de Toulouse, Toulouse
Nowadays, more and more information systems are connected to the Internet and offer Web interfaces to the general public or to a restricted set of users. Such openness makes them likely targets for intruders, and conventional protection techniques have been shown insufficient to prevent all intrusions in such open systems. This paper proposes a generic architecture to implement intrusion-tolerant Web servers. This architecture is based on redundancy and diversification principles, in order to increase the system resilience to attacks: usually, an attack targets a particular software, running on a particular platform, and fails on others. The architecture is composed of redundant proxies that mediate client requests to a redundant bank of diversified COTS\footnote{Commercial Off The Shelf.} application servers. The redundancy is deployed here to increase system availability and integrity. To improve performance, adaptive redundancy is applied: the redundancy level is selected according to the current alert level. The architecture can be used for static servers, i.e., for Web distribution of stable information (updated off-line), as well as for fully dynamic systems where information updates are executed immediately on an on-line database. The feasibility of this architecture has been demonstrated by implementing an example of a travel agency Web server.
Security, integrity, and protection, Web servers
Ayda Saidane, Yves Deswarte, Vincent Nicomette, "The Design of a Generic Intrusion-Tolerant Architecture for Web Servers", IEEE Transactions on Dependable and Secure Computing, vol. 6, no. , pp. 45-58, January-March 2009, doi:10.1109/TDSC.2008.1
116 ms
(Ver 3.1 (10032016))