NANO SCIENTIFIC RESEARCH CENTRE
PVT.LTD., AMEERPET, HYD
WWW.NSRCNANO.COM, 09640648777, 09652926926
JAVA
PROJECTS LIST--2013
JAVA 2013
IEEE PAPERS
DoubleGuard: Detecting Intrusions in
Multitier Web Applications
Abstract
Internet
services and applications have become an inextricable part of daily life,
enabling communication and the management of personal information from
anywhere. To accommodate this increase in application and data complexity, web
services have moved to a multitiered design wherein the webserver runs the
application front-end logic and data are outsourced to a database or file
server. In this paper, we present DoubleGuard, an IDS system that models the
network behavior of user sessions across both the front-end webserver and the
back-end database. By monitoring both web and subsequent database requests, we
are able to ferret out attacks that an independent IDS would not be able to identify.
Furthermore, we quantify the limitations of any multitier IDS in terms of
training sessions and functionality coverage. We implemented DoubleGuard using
an Apache webserver with MySQL and lightweight virtualization. We then
collected and processed real-world traffic over a 15-day period of system
deployment in both dynamic and static web applications. Finally, using
DoubleGuard, we were able to expose a wide range of attacks with 100 percent accuracy
while maintaining 0 percent false positives for static web services and 0.6
percent false positives for dynamic web services.
Existing System
To protect multitiered web services,
Intrusion detection systems have been widely used to detect known attacks by matching
misused traffic patterns or signatures. A class of IDS that leverages machine
learning can also detect unknown attacks by identifying abnormal network traffic
that deviates from the so-called “normal” behavior previously profiled during
the IDS training phase.
Proposed System
In this paper, we present
DoubleGuard, a system used to detect attacks in multitiered web services. Our
approach can create normality models of isolated user sessions that include both
the web front-end (HTTP) and back-end (File or SQL) network transactions. To
achieve this, we employ a lightweight virtualization technique to assign each
user’s web session to a dedicated container, an isolated virtual computing environment.
We use the container ID to accurately associate the web request with the
subsequent DB queries. Thus, DoubleGuard can build a causal mapping profile by taking
both the webserver and DB traffic into account
Software Requirement Specification
Software Specification
Operating System : Windows XP
Technology : JAVA
Database : MY SQL
Web Server : Apache
Tomcat 7.0
Hardware Specification
Processor : Pentium
IV
RAM : 512 MB
Hard Disk : 80GB
Module
Description
- Admin
- Purchase
Department
- Suppliers
- Employee
- Request
Processing
- Guard
Software
Requirements
·
Coding Language : Java
·
Database : MySQL
·
Operating System : Windows XP
Modules:
- Get Access Token
- Get Tweets
- Calculate Entropy Measure
- Find Source Type
No comments:
Post a Comment