The new method of security development for web services based on moving target defense (MTD) technologies | Научно-инновационный портал СФУ

The new method of security development for web services based on moving target defense (MTD) technologies

Тип публикации: доклад, тезисы доклада, статья из сборника материалов конференций

Конференция: International Conference on Network Security and Communication Engineering, NSCE 2014; Hong Kong, China; Hong Kong, China

Год издания: 2015

Ключевые слова: Behavioral research, Complex networks, Web services, Websites, Cross site scripting, Moving target defense, Security issues, SQL injection, System interactions, System structures, Network security

Аннотация: This article describes the new method of security development for web services based on Moving Target Defense (MTD) technologies. This method addresses the security issue of websites from attackers that employ SQL injection, cross-site scripting, etc. The system interaction is built so that when the adversary tries to investigate the system structure, he obtains ever-increasing complexity of information from the system. These technologies allow us to defend websites from users with malicious intent and to research the behaviors of those attackers. Researching the behaviors of such intruders gives us the opportunity to find new vulnerabilities. This paper provides some examples of these technologies. © 2015 Taylor & Francis Group, London.

Ссылки на полный текст

Издание

Журнал: Network Security and Communication Engineering - Proceedings of the 2014 International Conference on Network Security and Communication Engineering, NSCE 2014

Номера страниц: 55-58

Персоны

Вхождение в базы данных

Информация о публикациях загружается с сайта службы поддержки публикационной активности СФУ. Сообщите, если заметили неточности.

Версия для слабовидящих

Вы можете отметить интересные фрагменты текста, которые будут доступны по уникальной ссылке в адресной строке браузера.