Special Issue Article
Intrusion Detection Using Double Guard In Multi- Tier Architecture
Due to internet expansion web applications have now become a part of everyday life. To put up this increase in application and data complexity, web services have moved to a multi-tiered design wherein the web server runs the application front-end logic and data is outsourced to a database or file server. In this paper, we designed IDS in multitier architecture that models the network behavior of user sessions across both the front-end web server and the back-end database. It handles the relations between the actions caused by the user for every simple user sessions and is also designed to detect potential violations in database security. This system is implemented using Apache web server with MySQL and lightweight virtualization. For each client a “Web Server Virtual Machine” is created and is associated with an independent container ID and hence it enhances the security. The concept of holder and the user behavior pattern provides a means of tracking the information flow from the web server to the database server for each session.