DocumentCode :
2126711
Title :
Design and implementation of Web service honeypot
Author :
Ghourabi, Abdallah ; Abbes, Tarek ; Bouhoula, Adel
Author_Institution :
Dept. of Comput. Sci. & Networks, Univ. of Carthage, Tunis, Tunisia
fYear :
2011
fDate :
15-17 Sept. 2011
Firstpage :
1
Lastpage :
5
Abstract :
Web services are increasingly becoming an integral part of next-generation web applications. A Web service is defined as a software system designed to support interoperable machine-to-machine interaction over a network based on a set of XML standards. This new architecture and set of protocols brings new vulnerabilities that can be exploited by attackers. To prevent and detect such attacks, several security techniques are available like authentication and encryption mechanisms, firewalls and intrusion detection systems (IDS). Nevertheless these security methods encounter some problems, especially when dealing with new attacks. Relying on additional security principles seems to be important to well protect Web services. In this paper, we propose using honeypots to detect and study attacks against Web services. Honeypots are used to learn new techniques, tools and motivations of hackers to better protect the production systems against attacks. Our solution (WS Honeypot) is to deploy a honeypot as a web service application. This honeypot captures all request messages and analyses them by using machine learning techniques in order to detect and study attacks.
Keywords :
Web services; XML; computer crime; open systems; software architecture; Web service honeypot; XML standard; encryption mechanism; firewalls; hacker motivation; interoperable machine-to-machine interaction; intrusion detection system; machine learning; next-generation Web application; request message; security technique; software system design; Classification algorithms; Feature extraction; Humans; Intrusion detection; Simple object access protocol; Support vector machines;
fLanguage :
English
Publisher :
ieee
Conference_Titel :
Software, Telecommunications and Computer Networks (SoftCOM), 2011 19th International Conference on
Conference_Location :
Split
Print_ISBN :
978-1-4577-1439-9
Type :
conf
Filename :
6064371
Link To Document :
بازگشت