Composição de IDSs Usando Web Services
Abstract
This paper presents a model for manual and dynamic composition of intrusion detection systems. Such systems can work either in medium and large sized companies environments. It can also work in open environment, which uses Internet. The construction of such systems is possible through the application of introduced standards (or in definition process) and still, for the extensive use of XML language and the Web Services technology.References
BASS, T.; 2004. Service-Oriented Horizontal Fusion in Distributed Coordination-Based Systems. IEEE MILCOM 2004 (Nov. 2004: Monterey, CA).
BRAY, T. et al.; 2004. Extensible Markup Language (XML) 1.0 (Third Edition). W3C.
DEBAR H., CURRY D. and FEINSTEIN B.; 2005. The Intrusion Detection Message Exchange Format. IETF Internet-Draft draft-ietf-idwg-idmef-xml-14.
LONVICK, C.; 2001. The BSD syslog Protocol. RFC 3164. IETF Network Working Group.
OASIS; 2004. UDDI Version 3.0.2. OASIS UDDI Spec TC.
OASIS; 2005. Web Services Distributed Management: Management Using Web Services (MUWS 1.0) Part 2 - Web Services Distributed Management: Management of Web Services (WSDM-MOWS) 1.0. OASIS Web Services Distributed Management (WSDM) TC.
PRELUDE; 2005. Prelude: an Open Source, Hybrid Intrusion Detection System. (current: http://www.prelude-ids.org/, Jun. 2005).
VIGNA, G. VALEUR, F., and KEMMERER R.A.; 2003. Designing and implementing a family of intrusion detection systems. In: 9th European software engineering conference held jointly with 11th ACM SIGSOFT international symposium on Foundations of software engineering. Proceedings. Vol.28 n.5. p. 88-97.
W3C; 2003. SOAP Version 1.2 Part 0: Primer. World Wide Web Consortium.
W3C; 2004. Services Architecture. W3C Working Group Note 11 February 2004.
W3C; 2005. Web Services Description Language (WSDL) Version 2.0 Part 1: Core Language. World Wide Web Consortium.
WOOD, M., and ERLINGER, M.; 2002. Intrusion Detection Message Exchange Requirements. IETF Internet-Draft draft-ietf-idwg-requirements-10.
YEGNESWARAN, V., BARFORD, P., JHA, S.; 2004. Global Intrusion Detection in the DOMINO Overlay System. In: of Network and Distributed System Security Symposium (NDSS) (Feb. 2004: San Diego, Ca). Proceedings.
BRAY, T. et al.; 2004. Extensible Markup Language (XML) 1.0 (Third Edition). W3C.
DEBAR H., CURRY D. and FEINSTEIN B.; 2005. The Intrusion Detection Message Exchange Format. IETF Internet-Draft draft-ietf-idwg-idmef-xml-14.
LONVICK, C.; 2001. The BSD syslog Protocol. RFC 3164. IETF Network Working Group.
OASIS; 2004. UDDI Version 3.0.2. OASIS UDDI Spec TC.
OASIS; 2005. Web Services Distributed Management: Management Using Web Services (MUWS 1.0) Part 2 - Web Services Distributed Management: Management of Web Services (WSDM-MOWS) 1.0. OASIS Web Services Distributed Management (WSDM) TC.
PRELUDE; 2005. Prelude: an Open Source, Hybrid Intrusion Detection System. (current: http://www.prelude-ids.org/, Jun. 2005).
VIGNA, G. VALEUR, F., and KEMMERER R.A.; 2003. Designing and implementing a family of intrusion detection systems. In: 9th European software engineering conference held jointly with 11th ACM SIGSOFT international symposium on Foundations of software engineering. Proceedings. Vol.28 n.5. p. 88-97.
W3C; 2003. SOAP Version 1.2 Part 0: Primer. World Wide Web Consortium.
W3C; 2004. Services Architecture. W3C Working Group Note 11 February 2004.
W3C; 2005. Web Services Description Language (WSDL) Version 2.0 Part 1: Core Language. World Wide Web Consortium.
WOOD, M., and ERLINGER, M.; 2002. Intrusion Detection Message Exchange Requirements. IETF Internet-Draft draft-ietf-idwg-requirements-10.
YEGNESWARAN, V., BARFORD, P., JHA, S.; 2004. Global Intrusion Detection in the DOMINO Overlay System. In: of Network and Distributed System Security Symposium (NDSS) (Feb. 2004: San Diego, Ca). Proceedings.
Published
2005-09-26
How to Cite
BRANDÃO, José Eduardo M. S.; FRAGA, Joni da Silva; MAFRA, Paulo Manoel.
Composição de IDSs Usando Web Services. In: BRAZILIAN SYMPOSIUM ON CYBERSECURITY (SBSEG), 5. , 2005, Florianópolis.
Anais [...].
Porto Alegre: Sociedade Brasileira de Computação,
2005
.
p. 339-342.
DOI: https://doi.org/10.5753/sbseg.2005.21553.
