Call for Paper - January 2023 Edition
IJCA solicits original research papers for the January 2023 Edition. Last date of manuscript submission is December 20, 2022. Read More

DOS Attack Reduction by using Web Service Filter

Print
PDF
International Journal of Computer Applications
© 2014 by IJCA Journal
Volume 105 - Number 14
Year of Publication: 2014
Authors:
Sonali Utsai
Ram B. Joshi
10.5120/18443-9813

Sonali Utsai and Ram B Joshi. Article: DOS Attack Reduction by using Web Service Filter. International Journal of Computer Applications 105(14):4-9, November 2014. Full text available. BibTeX

@article{key:article,
	author = {Sonali Utsai and Ram B. Joshi},
	title = {Article: DOS Attack Reduction by using Web Service Filter},
	journal = {International Journal of Computer Applications},
	year = {2014},
	volume = {105},
	number = {14},
	pages = {4-9},
	month = {November},
	note = {Full text available}
}

Abstract

As Application Denial of Service attacks have rapidly become a commonplace threat for doing business on the Internet - more proof that Web application security is more critical now than ever. Denial of Service attacks can result in significant loss of service, money and reputation for organizations. The paper is proposed to build application layer filters to provide real time detection and mitigation of Daniel of service attack. Web Service filters helps protecting Web Service application and service disruption by removing application level DoS attacks. This can defend critical Web Service resource from attack while relying sophisticated filtering technologies to allow legitimate traffic to continue to flow. We compared the couple of filter designs and how they address the specific Web Service attack types. We briefly discuss the different common DoS attacks, risk associated with them and detail of Web Service filters benefits to the Web Service. Also, we carried out design, implementation and deployment details on a one of commonly used application server.

References

  • S. Venkatesan, M. Basha, C. Chellappan, A. Vaish, P. Dhavachelvan "Analysis of accounting models for the detection of duplicate requests in Web Services" Journal of King Saud University May 2012.
  • XiaoFeng Wang • Michael K. Reiter "A multi-layer framework for puzzle-based denial-of-service defense" Springer-Verlag 2007.
  • M Mehra, M Agarwal, R Pawar, D Shah "Mitigating Denial of Service attack using CAPTCHA Mechanism" International Conference and Workshop on Emerging Trends in Technology (ICWET 2011) – TCET, Mumbai, India.
  • Yi Xie ,Shun-Zheng Yu "Monitoring the Application-Layer DoS Attacks for Popular Websites" IEEE/ACM transactions on networking, vol. 17, no. 1, February 2009
  • Raja Azrina Raja Othman "Understanding the Various Types of Denial of Service Attack" .
  • N. Gruschka, L. Iacono. Vulnerable Cloud: SOAP Message Security Validation Revisited. IEEE Int'l Conf. on Web Services, 2009.
  • M. Jensen, N. Gruschka, R. Herkenhoner, N. Luttenberger. "SOA and Web Services: New Technologies, New Standards - New Attacks" 5th European Conference on Web Services, 2007.
  • N. Antunes, M. Vieira. " Enhancing Penetration Testing with Attack Signatures and Interface Monitoring for the Detection of Injection Vulnerabilities in Web Service" IEEE Int'l Conf. on Services Computing, 104-111, 2011.
  • M. Ficco, M. Rak. "Intrusion Tolerant Approach for Denial of Service Attacks to Web Services". Int'l Conf. on Data Compression, Communications and Processing, 285-292, 2011.
  • N. Sidharth, J. Liu. "Intrusion Resistant SOAP Messaging with IAPF" IEEE Asia-Pacific Conf. on Services Computing, p. 856-862, 2008.
  • B. Yildiz, G. Fox, S. Pallickara, "An Orchestration for Distributed Web Service Handlers". Int'l Conf. on Internet and Web Applications and Services, p. 638-643, 2008.