Security attack ontology for Web services

2006 2nd International Conference on Semantics Knowledge and Grid, SKG

Volumn , Issue , 2006, Pages 42-47

  Vorobiev, Artem ^a   Han, Jun ^a  

^a SWINBURNE UNIVERSITY OF TECHNOLOGY   (Australia)

Author keywords

[No Author keywords available]

Indexed keywords

COMPUTER SYSTEM FIREWALLS; INTRUSION DETECTION; ONTOLOGY; SECURITY SYSTEMS; SEMANTICS; WEBSITES; WEB SERVICES;

DEFENSIVE MECHANISM; DISTRIBUTED ATTACK; DISTRIBUTED FIREWALL; INTRUSION DETECTION SYSTEMS; NON FUNCTIONAL PROPERTIES; PLATFORM INDEPENDENCE; SECURITY ATTACKS; SECURITY THREATS; SECURITY ISSUES; SEMANTIC DATA; WS SECURITY;

WEB SERVICES; SEMANTICS;

EID: 44949240818     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/SKG.2006.85     Document Type: Conference Paper

References (24)

1. S. Axelsson, "Research in Intrusion-Detection Systems: A Survey", Technical report 98-17, Chalmers University of Technology, 1998.
2. M. Burgers, H. Haugerud, S. Straumsnes, and T. Reitan, "Measuring System Normality", ACM Transactions on Computer Systems, Vol. 20, No. 2, May 2002, pp. 125-160.
3. G. Denker, S. Nguyen, and A. Ton, "OWL-S Semantics of Security Web Services: a Case Study", SRI International, Menlo Park, California, USA., 2004.
4. T. Erl, "WS-* Specifications, An Overview of the WS-Security Framework", 2004. http://www.ws-standards.com/ws-security.asp.
5. S. Faust, "SOAP Web Services Attacks: Are your web applications vulnerable?", SPIDynamics, 2003.
6. R. Janakiraman, M. Waldvogel, and Q. Zhang, "Indra: A peer-to-peer approach to network intrusion detection and prevention", IEEE WETICE2003, Austria, June 2003.
7. IBM and Microsoft, "Security in a Web Services World: A Proposed Architecture and Roadmap", A joint security whitepaper from IBM and Microsoft, April 2002.
8. KAoS. http://www.ihmc.us/research/projects/KAoS/.
9. Y. Kim, W. C. Lau, M. C. Chuah, and J. H. Chao, "PacketScore: Statistical-based Overload Control against Distributed Denial-of-Service Attacks", IEEE INFOCOM, March 2004.
10. K. Khan and J. Han, "A Security Characterisation Framework for Trustworthy Component Based Software Systems", COMPSAC2003, USA, 2003.
11. K. Khan, "Security Characterisation and Compositional Analysis for Component-based Software Systems", PhD thesis, Monash University, April 2005.
12. A. Kim, J. Luo, and M. Kang, "Security Ontology for Annotating Resources", ODBASE 2005, Cyprus, 2005
13. P. Lindstrom, "Attacking and Defending Web Services", A Spire Research Report, January 2004.
14. METEOR-S, http://lsdis.cs.uga.edu/projects/meteor-s/.
15. J. Mirkovic, "D-WARD: Source-End Defence Against Distributed Denial-of-Service Attacks", The PhD thesis, University of California, 2003.
16. W. Negm, "Anatomy of a Web Services Attack: A Guide to Threats and Preventative Countermeasures", 2004.
17. T. O'Reilly, "What Is Web 2.0, Design Patterns and Business Models for the Next Generation of Software", 2005.
18. OWL, http:w3.org/TR/owl-features/.
19. OWL-S, http://www.daml.org/services/.
20. A. Stamos and S. Stender, "Attacking Web Services: The Next Generation of Vulnerable Enterprise Apps", BlackHat2005, USA, 2005.
21. SWSL, http://www.daml.org/services/swsl/.
22. J. Undercoffer, A. Joshi, T. Finin, and J. Pinkston, "A target-centric ontology for intrusion detection," Int. Joint Conference on Artificial Intelligence, Mexico, 2004.
23. A. Vorobiev and J. Han, "Specifying Dynamic Security Properties of Web Service Based Systems", SKG2006, Guilin, China, 2006. To appear.
24. WSMO, http://www.wsmo.org/.