Complete Monitoring Of Web by Session Control Using Multi-Tier Container Concept
|Vincila.A1, Gopalakrishna Moorthy.K2, Saranya.R3
|Related article at Pubmed, Scholar Google|
Today web applications have become a ubiquitous use of daily tasks such as banking, travel and social networking; etc. Web services provide communication and management of personal information from anywhere. With the increase in the use of these applications, there is an increase in the number and complexity of vulnerabilities and attacks. Due to their ubiquitous use for everyday tasks, web applications have always been the target of attacks. Intrusion Detection System (IDS) is proposed with lightweight virtualization that models the network behaviour for web applications. By monitoring the web and subsequent database requests, it can identify the attacks and provide early warning about suspicious activities. Casual mapping model is developed between web server requests and subsequent database queries which identifies various kinds of attacks. Each session is assigned with each container for single user. The container ID accurately associates the web request with the subsequent DB queries. Session control is used to control each session for each user request. Honey pot method is implemented to collect the intruder’s behaviors and stores that details in session block list table. Whenever a new session is tracked for Intrusion Detection, it is first referred with the session block list. If the tracked session is matched with the session block list table then it is avoided to enter into the session. Hence, the Intrusion avoidance can be achieved in an efficient manner.