| 组合Web服务劫持攻击的研究与实现 |
| |
| 引用本文: | 黄康宇,郑成辉,吴海佳,吴礼发. 组合Web服务劫持攻击的研究与实现[J]. 小型微型计算机系统, 2011, 32(2) |
| |
| 作者姓名: | 黄康宇 郑成辉 吴海佳 吴礼发 |
| |
| 作者单位: | 解放军理工大学指挥自动化学院,江苏,南京,210007 |
| |
| 基金项目: | 国防预研基金项目(51406020105JB8103)资助 |
| |
| 摘 要: | 组合Web服务在给基于异构平台的应用集成带来极大便利的同时,其自身面临着各种恶意攻击的威胁.根据组合Web服务开放性、分布式的特点,提出了针对组合Web服务的服务劫持攻击方案,包括劫持洪泛攻击、服务假冒攻击和服务重放攻击.详细介绍了这些攻击方式的设计思想,模拟实验结果表明设计的攻击方案对组合Web服务产生了严重影响.论文的研究成果有助于设计针对组合Web服务的攻击检测方法.
|
| 关 键 词: | Web服务 组合Web服务 安全 服务劫持攻击 |
Research and Implementation of Service Hijack Attacks on Composite Web Services |
| |
| HUANG Kang-yu,ZHENG Cheng-hui,WU Hai-jia,WU Li-fa. Research and Implementation of Service Hijack Attacks on Composite Web Services[J]. Mini-micro Systems, 2011, 32(2) |
| |
| Authors: | HUANG Kang-yu ZHENG Cheng-hui WU Hai-jia WU Li-fa |
| |
| Affiliation: | HUANG Kang-yu,ZHENG Cheng-hui,WU Hai-jia,WU Li-fa(Institute of Command Automation,PLA University of Science & Technology,Nanjing 210007,China) |
| |
| Abstract: | Composite Web Services greatly facilitates the application-to-application integration based on heterogeneous platform,but they are faced with threats of various malicious attacks.Base on the open and distributed characteristics of Composite Web Services,this paper puts forward the Service Hijack attacks on Composite Web Services which include Hijack Flooding attack,Service Counterfeiting attack and Service Replay attack.This paper detailedly introduces the design principles,and the results of simulate exper... |
| |
| Keywords: | Web service composite Web service security service hijack attacks |
| 本文献已被 CNKI 万方数据 等数据库收录! |
|
