Self-protection for distributed component-based applications

Abstract : The complexity of today's distributed computing environments is such that the presence of bugs and security holes is statistically unavoidable. A very promising approach to this issue is to implement a self-protected system, similarly to a natural immune system which has the ability to detect the intrusion of foreign elements and react while it is still in progress. This paper describes an approach relying on component-based software engineering to ease the protection of distributed systems. The knowledge of the application architecture is used to detect foreign activities and to trigger counter measures. We focus on a mean to recognize known and unknown attacks independently from legacy software and avoiding false positives. Hence, the scope of the detected attacks is, for the moment, limited to the detection of illegal communications. We describe how this approach can be applied to provide self-protection for clustered J2ee applications with a very low overhead.
Type de document :
Communication dans un congrès
Springer. SSS'06 : 8th international conference on Stabilization, safety, and security of distributed systems, Nov 2006, Dallas, Texas, United States. Springer, pp.184-198, 2006
Liste complète des métadonnées

https://hal.inria.fr/hal-00689149
Contributeur : Ist Rennes <>
Soumis le : jeudi 19 avril 2012 - 13:35:52
Dernière modification le : jeudi 11 janvier 2018 - 06:22:03

Identifiants

  • HAL Id : hal-00689149, version 1

Collections

Citation

Benoit Claudel, Noel De Palma, Renaud Lachaize, Daniel Hagimont. Self-protection for distributed component-based applications. Springer. SSS'06 : 8th international conference on Stabilization, safety, and security of distributed systems, Nov 2006, Dallas, Texas, United States. Springer, pp.184-198, 2006. 〈hal-00689149〉

Partager

Métriques

Consultations de la notice

205