Self-protection for distributed component-based applications - ERODS Accéder directement au contenu
Communication Dans Un Congrès Année : 2006

Self-protection for distributed component-based applications

Résumé

The complexity of today's distributed computing environments is such that the presence of bugs and security holes is statistically unavoidable. A very promising approach to this issue is to implement a self-protected system, similarly to a natural immune system which has the ability to detect the intrusion of foreign elements and react while it is still in progress. This paper describes an approach relying on component-based software engineering to ease the protection of distributed systems. The knowledge of the application architecture is used to detect foreign activities and to trigger counter measures. We focus on a mean to recognize known and unknown attacks independently from legacy software and avoiding false positives. Hence, the scope of the detected attacks is, for the moment, limited to the detection of illegal communications. We describe how this approach can be applied to provide self-protection for clustered J2ee applications with a very low overhead.

Domaines

Autre [cs.OH]
Fichier non déposé

Dates et versions

hal-00689149 , version 1 (19-04-2012)

Identifiants

  • HAL Id : hal-00689149 , version 1

Citer

Benoit Claudel, Noel de Palma, Renaud Lachaize, Daniel Hagimont. Self-protection for distributed component-based applications. SSS'06 : 8th international conference on Stabilization, safety, and security of distributed systems, Nov 2006, Dallas, Texas, United States. pp.184-198. ⟨hal-00689149⟩
85 Consultations
0 Téléchargements

Partager

Gmail Facebook X LinkedIn More