Title :
Design and Implementation of Dynamic Web Security and Defense Mechanism Based on NDIS Intermediate Driver
Author :
Dai, Shuo ; Du, Ye
Author_Institution :
Sch. of Comput. & Inf. Technol., Beijing Jiaotong Univ., Beijing, China
Abstract :
To design and build a dynamic Web security and defense mechanism, we use Device Driver Kit (DDK) Pass thru routine as the framework and adopt a method of capture based on Network Driver Interface Specification (NDIS) intermediate driver to realize non-bypassing monitoring of all packets; study, design and test detection rules against SQL injection attack and Cross-Site Scripting (CSS) attack; build a pervasive dynamic security system integrating Intrusion Detection System (IDS) and Firewall.Once an intrusion is detected, this Interaction Agent starts to work immediately followed by modification of firewall access control polices, thus complete security control is achieved.
Keywords :
Internet; device drivers; network interfaces; security of data; NDIS intermediate driver; SQL injection attack; cross-site scripting attack; device driver kit; dynamic Web security design; firewall access control polices; interaction agent; intrusion detection system; network driver interface specification; nonbypassing monitoring; pass thru routine; pervasive dynamic security system; test detection rules; Computer security; Data security; Hardware; Information security; Information technology; Intrusion detection; Protection; System testing; Web server; Web services; IDS; NDIS; SOAP; firewall; interaction;
Conference_Titel :
Information Processing, 2009. APCIP 2009. Asia-Pacific Conference on
Conference_Location :
Shenzhen
Print_ISBN :
978-0-7695-3699-6
DOI :
10.1109/APCIP.2009.130
