Decoupling Components of an Attack Prevention System Using Publish/Subscribe [chapter]

Joaquín García, Michael A. Jaeger, Gero Mühl, Joan Borrell
Intelligence in Communication Systems  
Distributed and coordinated attacks can disrupt electronic commerce applications and cause large revenue losses. The prevention of these attacks is not possible by just considering information from isolated sources of the network. A global view of the whole system is necessary to react against the different actions of such an attack. We are currently working on a decentralized attack prevention framework that is targeted at detecting as well as reacting to these attacks. The cooperation between
more » ... the different entities of this system has been efficiently solved through the use of a publish/subscribe model. In this paper we first present the advantages and convenience in using this communication paradigm for a general decentralized attack prevention framework. Then, we present the design for our specific approach. Finally, we shortly discuss our implementation based on a freely available publish/subscribe message oriented middleware.
doi:10.1007/0-387-32015-6_9 dblp:conf/intellcomm/GarciaJMB05 fatcat:bvfgfrndejfznhzyjzy7t5hhlu