Design and Implementation of Dynamic Web Security and Defense Mechanism Based on NDIS Intermediate Driver

Author

Dai, Shuo ; Du, Ye

Author_Institution

Sch. of Comput. & Inf. Technol., Beijing Jiaotong Univ., Beijing, China

Volume

1

fYear

2009

fDate

18-19 July 2009

Firstpage

506

Lastpage

509

Abstract

To design and build a dynamic Web security and defense mechanism, we use Device Driver Kit (DDK) Pass thru routine as the framework and adopt a method of capture based on Network Driver Interface Specification (NDIS) intermediate driver to realize non-bypassing monitoring of all packets; study, design and test detection rules against SQL injection attack and Cross-Site Scripting (CSS) attack; build a pervasive dynamic security system integrating Intrusion Detection System (IDS) and Firewall.Once an intrusion is detected, this Interaction Agent starts to work immediately followed by modification of firewall access control polices, thus complete security control is achieved.

Keywords

Internet; device drivers; network interfaces; security of data; NDIS intermediate driver; SQL injection attack; cross-site scripting attack; device driver kit; dynamic Web security design; firewall access control polices; interaction agent; intrusion detection system; network driver interface specification; nonbypassing monitoring; pass thru routine; pervasive dynamic security system; test detection rules; Computer security; Data security; Hardware; Information security; Information technology; Intrusion detection; Protection; System testing; Web server; Web services; IDS; NDIS; SOAP; firewall; interaction;

fLanguage

English

Publisher

ieee

Conference_Titel

Information Processing, 2009. APCIP 2009. Asia-Pacific Conference on

Conference_Location

Shenzhen

Print_ISBN

978-0-7695-3699-6

Type

conf

DOI

10.1109/APCIP.2009.130

Filename

5197104