AN ADAPTIVE AND SMART SECURITY ARCHITECTURE FOR WEB SERVICE - SMARTWSSEC ARCHITECTURE
Published In: 5TH INTERNATIONAL CONFERENCE ON ADVANCES IN COMPUTING, CONTROL AND NETWORKING
Author(s): EL HOUSSAIN BEN MESSAOUD , OUAFAA DIOURI
Abstract: Vulnerabilities in Web based applications will always be present. Several measures were taken to extenuate the effects of this reality but with limited success. In fact, we are bombarded by new technologies to harden systems and monitor and respond to threats, like firewalls, IDS (intrusion detection system) and IPS (Intrusion Prevention System). However, the flow of attacks and threats is so important to the point that the configuration and reconfiguration of these tools becomes difficult to insure in time. In this paper we introduce “a framework for dynamic security Policy for Web services” called SmartWSSec. The main goal of our architecture is to guarantee better security for web services based on adaptive security models. It aims to identify the appropriate actions that must be taken when a zero day attack occurred resulting on a smart protection for web service in a self-adaptive manner. The proposed architecture uses a knowledge based mechanism to learn and adjust the system whe
- Publication Date: 26-Sep-2016
- DOI: 10.15224/978-1-63248-104-7-18
- Views: 0
- Downloads: 0
MULTIFACETED TRUST ASSESSMENT FRAMEWORK FOR CONTAINER BASED EDGE COMPUTING PLATFORM
Published In: 5TH INTERNATIONAL CONFERENCE ON ADVANCES IN COMPUTING, CONTROL AND NETWORKING
Author(s): BUKHARY IKHWAN ISMAIL , EHSAN MOSTAJERAN , HONG ONG , KHALID MOHAMMAD SALEEM , MOHAMMAD FAIRUS KHALID , MOHD NIZAM MOHD MYDIN
Abstract: In Edge Computing platform, services are decentralized from cloud center to the edge of the platform supporting on-premises and latency sensitive applications. For this reason, traditional security mechanisms are not suitable to ensure trustworthiness of distributed and multi- tenant attributes of edge platform. Similarly by utilizing Docker as edge server, trustworthiness of host, containers and service becomes a high priority issue. Therefore in such platform run-time security assessment of the edge stack must be applied to ensure trustworthiness of resources and service. In this paper, we propose multifaceted trust framework to quantify trustworthiness of the edge servers based on security assessment of the edge stack. A chain measurement is applied to assessment process to allow insurance of the effect of each edge server’s trustworthiness history on the container orchestration.
- Publication Date: 26-Sep-2016
- DOI: 10.15224/978-1-63248-104-7-19
- Views: 0
- Downloads: 0