Cross-organizational Service Security – Solutions for Attack Modeling and Defense
نویسندگان
چکیده
Security is an important aspect of Service-oriented Architectures (SOAs), enabling the service-based integration of partner IT systems across organizational boundaries, i. e., in the Internet of Services. Current trends in SOA security, e. g., reducing it to Web service security, do not take into account SOA-specific threats, vulnerabilities, and attacks. In this paper, measures to support the modeling of attacks in general and in order to show the service-oriented difference regarding security are introduced. Based on this understanding, mechanisms to defend against SOA-specific attacks will be designed and evaluated.
منابع مشابه
An attack-and-defence game for security assessment in vehicular ad hoc networks
Recently, there is an increasing interest in Security and Privacy issues in Vehicular ad hoc networks (or VANETs). However, the existing security solutions mainly focus on the preventive solutions while lack a comprehensive security analysis. The existing risk analysis solutions may not work well to evaluate the security threats in vehicular networks since they fail to consider the attack and d...
متن کاملA Review of Intrusion Detection Defense Solutions Based on Software Defined Network
Most networks without fixed infrastructure are based on cloud computing face various challenges. In recent years, different methods have been used to distribute software defined network to address these challenges. This technology, while having many capabilities, faces some vulnerabilities in the face of some common threats and destructive factors such as distributed Denial of Service. A review...
متن کاملADAPT: A Game Inspired Attack-Defense and Performance Metric Taxonomy
Game theory has been researched extensively in network security demonstrating an advantage of modeling the interactions between attackers and defenders. Game theoretic defense solutions have continuously evolved in most recent years. One of the pressing issues in composing a game theoretic defense system is the development of consistent quantifiable metrics to select the best game theoretic def...
متن کاملResearch on Network Defense Graph Model in Network Security
Security analysis and attack-defense modeling are effective method to identify the vulnerabilities of information systems for proactive defense. The attack graph model reflects only attack actions and system state changes, without considering the perspective of the defenders. To assess the network information system and comprehensively show attack and defense strategies and theirs cost, a defen...
متن کاملModeling Network Security using Colored Petri Nets Model
81 ABSTRACT: Network security is a complex and challenging problem. The area of network defense mechanism design is receiving immense attention from the research community. However, the network security problem is far from completely solved. In this context, several modeling approaches have been developed, such as approaches based on attack trees (AT). Researchers have been exploring the applic...
متن کامل