Research Article
A P2P and Rule-based Web Application Intrusion Prevention System
@INPROCEEDINGS{10.1109/ChinaCom.2013.6694631, author={fang wang and Qian He and Yong Wang}, title={A P2P and Rule-based Web Application Intrusion Prevention System}, proceedings={8th International Conference on Communications and Networking in China}, publisher={IEEE}, proceedings_a={CHINACOM}, year={2013}, month={11}, keywords={web application intrusion prevention system p2p rule based}, doi={10.1109/ChinaCom.2013.6694631} }
- fang wang
Qian He
Yong Wang
Year: 2013
A P2P and Rule-based Web Application Intrusion Prevention System
CHINACOM
IEEE
DOI: 10.1109/ChinaCom.2013.6694631
Abstract
Such traditional security tools as Firewalls, IDS and IPS are limited to their own product positioning and the depth of protection, which cannot resist attacks against web platform effectively, so a P2P and rule based Web application intrusion prevention system is designed in this paper. The system achieves to client requests and responses through a reverse proxy, and each node runs the same application program to accomplish peer-to-peer structure using P2P architecture. The primary and secondary nodes are determined dynamically based on users’ demand. The primary node can remain sessions and balance the loads. The secondary node is used to detect intrusions using rule based expert libraries and plug-ins. The experimental results show that the system can prevent application layer attacks effectively, and response more quickly and more stable than single node.