Skip to Main content Skip to Navigation
Conference papers

Attack tolerance for services-based applications in the cloud

Abstract : Web services allow the communication of heterogeneous systems and are particularly suitable for building cloud applications. Furthermore, such applications must verify some static properties, but also tolerate attacks at runtime to ensure service continuity. To achieve this, in this paper we propose an attack tolerance framework that includes the risks of attacks. After describing the foundation of this framework, we propose expressing cloud applications as choreographies of services that take into account their distributed nature. Then, we extended the framework to introduce choreography verification by incorporating monitoring (passive tests) and reaction mechanisms. These techniques are validated through relevant experiments. As a result, our framework ensures the required attack tolerance of such cloud applications.
Complete list of metadata

Cited literature [19 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Tuesday, March 31, 2020 - 3:14:25 PM
Last modification on : Thursday, July 8, 2021 - 3:51:00 AM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Georges Ouffoué, Fatiha Zaïdi, Ana Cavalli. Attack tolerance for services-based applications in the cloud. ICTSS 2019: 31st IFIP International Conference on Testing Software and Systems, Oct 2019, Paris, France. pp.242-258, ⟨10.1007/978-3-030-31280-0_15⟩. ⟨hal-02526356⟩



Record views


Files downloads