TY - GEN
T1 - Decoupling components of an attack prevention system using publish/subscribe
AU - García, Joaquín
AU - Jaeger, Michael A.
AU - Mühl, Gero
AU - Borrel, Joan
PY - 2005/1/1
Y1 - 2005/1/1
N2 - Distributed and coordinated attacks can disrupt electronic commerce applications and cause large revenue losses. The prevention of these attacks is not possible by just considering information from isolated sources of the network. A global view of the whole system is necessary to react against the different actions of such an attack. We are currently working on a decentralized attack prevention framework that is targeted at detecting as well as reacting to these attacks. The cooperation between the different entities of this system has been efficiently solved through the use of a publish/subscribe model. In this paper we first present the advantages and convenience in using this communication paradigm for a general decentralized attack prevention framework. Then, we present the design for our specific approach. Finally, we shortly discuss our implementation based on a freely available publish/subscribe message oriented middleware.
AB - Distributed and coordinated attacks can disrupt electronic commerce applications and cause large revenue losses. The prevention of these attacks is not possible by just considering information from isolated sources of the network. A global view of the whole system is necessary to react against the different actions of such an attack. We are currently working on a decentralized attack prevention framework that is targeted at detecting as well as reacting to these attacks. The cooperation between the different entities of this system has been efficiently solved through the use of a publish/subscribe model. In this paper we first present the advantages and convenience in using this communication paradigm for a general decentralized attack prevention framework. Then, we present the design for our specific approach. Finally, we shortly discuss our implementation based on a freely available publish/subscribe message oriented middleware.
UR - https://www.scopus.com/pages/publications/77954442465
U2 - 10.1007/0-387-32015-6_9
DO - 10.1007/0-387-32015-6_9
M3 - Conference contribution
AN - SCOPUS:77954442465
SN - 9780387291215
T3 - IFIP Advances in Information and Communication Technology
SP - 87
EP - 97
BT - Intelligence in Communication Systems - IFIP International Conference on Intelligence in Communication Systems, INTELLCOMM 2005
PB - Springer New York LLC
T2 - IFIP International Conference on Intelligence in Communication Systems, INTELLCOMM 2005
Y2 - 17 October 2005 through 19 October 2005
ER -