8th International Conference on Communications and Networking in China

Research Article

A P2P and Rule-based Web Application Intrusion Prevention System

Cite
BibTeX Plain Text
  • @INPROCEEDINGS{10.1109/ChinaCom.2013.6694631,
    author={fang wang and Qian He and Yong Wang},
    title={A P2P and Rule-based Web Application Intrusion Prevention System},
    proceedings={8th International Conference on Communications and Networking in China},
    publisher={IEEE},
    proceedings_a={CHINACOM},
    year={2013},
    month={11},
    keywords={web application intrusion prevention system p2p rule based},
    doi={10.1109/ChinaCom.2013.6694631}
}
  • fang wang
    Qian He
    Yong Wang
    Year: 2013
    A P2P and Rule-based Web Application Intrusion Prevention System
    CHINACOM
    IEEE
    DOI: 10.1109/ChinaCom.2013.6694631
fang wang1, Qian He1, Yong Wang1,*
  • 1: Guilin University of Electronic Technology
*Contact email: wang@guet.edu.cn

Abstract

Such traditional security tools as Firewalls, IDS and IPS are limited to their own product positioning and the depth of protection, which cannot resist attacks against web platform effectively, so a P2P and rule based Web application intrusion prevention system is designed in this paper. The system achieves to client requests and responses through a reverse proxy, and each node runs the same application program to accomplish peer-to-peer structure using P2P architecture. The primary and secondary nodes are determined dynamically based on users’ demand. The primary node can remain sessions and balance the loads. The secondary node is used to detect intrusions using rule based expert libraries and plug-ins. The experimental results show that the system can prevent application layer attacks effectively, and response more quickly and more stable than single node.

Keywords
web application intrusion prevention system p2p rule based
Published
2013-11-14
Publisher
IEEE
http://dx.doi.org/10.1109/ChinaCom.2013.6694631
Copyright © 2013–2024 IEEE