Integrated Access Control and Intrusion Detection for Web Servers

14 years 5 months ago

Download gost.isi.edu

Current intrusion detection systems work in isolation from access control for the application the systems aim to protect. The lack of coordination and inter-operation between these components prevents detecting and responding to ongoing attacks in real time, before they cause damage. To address this, we apply dynamic authorization techniques to support ﬁne-grained access control and application level intrusion detection and response capabilities. This paper describes our experience withintegration of the Generic Authorization and Access Control API (GAA-API) to provide dynamic intrusion detection and response for the Apache Web Server. The GAA-API is a generic interface which may be used to enable such dynamic authorization and intrusion response capabilities for many applications.

Tatyana Ryutov, B. Clifford Neuman, Dong-Ho Kim, L

Real-time Traffic

Access Control | Distributed And Parallel Computing | Dynamic Authorization | ICDCS 2003 | Intrusion Detection |

claim paper

Post Info
More Details (n/a)

Added	04 Jul 2010
Updated	04 Jul 2010
Type	Conference
Year	2003
Where	ICDCS
Authors	Tatyana Ryutov, B. Clifford Neuman, Dong-Ho Kim, Li Zhou

Comments (0)

Sciweavers

Integrated Access Control and Intrusion Detection for Web Servers

Access Control | Distributed And Parallel Computing | Dynamic Authorization | ICDCS 2003 | Intrusion Detection |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers