Title :
The Accountability Problem of Flooding Attacks in Service-Oriented Architectures
Author :
Jensen, Meiko ; Schwenk, Jorg
Author_Institution :
Horst Gortz Inst. for IT Security, Ruhr Univ. Bochum, Bochum
Abstract :
The threat of Denial of Service attacks poses a serious problem to the security of network-based services in general. For flooding attacks against service-oriented applications, this threat is dramatically amplified with potentially much higher impact and very little effort on the attacker´s side. Additionally, due to the high distribution of a SOA application´s components, fending such attacks becomes a far more complex task. In this paper, we present the problem of accountability, referring to the issue of resolving the attacker in a highly distributed service-oriented application. Using a general flooding attack model, we illustrate the problem´s parameters, and we finally discuss some general solution approaches.
Keywords :
Web services; security of data; Denial-of-Service attack threat; accountability problem; flooding attack; network-based service security; service-oriented architecture; Access control; Application software; Availability; Computer crime; Credit cards; Floods; Service oriented architecture; Software engineering; TCPIP; Thumb; Denial of Service; Web Services; accountability; flooding attacks; service-oriented architecture;
Conference_Titel :
Availability, Reliability and Security, 2009. ARES '09. International Conference on
Conference_Location :
Fukuoka
Print_ISBN :
978-1-4244-3572-2
Electronic_ISBN :
978-0-7695-3564-7
DOI :
10.1109/ARES.2009.11
