Attack tolerance for services-based applications in the cloud - Testing Software and Systems
Conference Papers Year : 2019

Attack tolerance for services-based applications in the cloud

Abstract

Web services allow the communication of heterogeneous systems and are particularly suitable for building cloud applications. Furthermore, such applications must verify some static properties, but also tolerate attacks at runtime to ensure service continuity. To achieve this, in this paper we propose an attack tolerance framework that includes the risks of attacks. After describing the foundation of this framework, we propose expressing cloud applications as choreographies of services that take into account their distributed nature. Then, we extended the framework to introduce choreography verification by incorporating monitoring (passive tests) and reaction mechanisms. These techniques are validated through relevant experiments. As a result, our framework ensures the required attack tolerance of such cloud applications.
Fichier principal
Vignette du fichier
482770_1_En_15_Chapter.pdf (562.12 Ko) Télécharger le fichier
Origin Files produced by the author(s)
Loading...

Dates and versions

hal-02526356 , version 1 (31-03-2020)

Licence

Identifiers

Cite

Georges Ouffoué, Fatiha Zaïdi, Ana R Cavalli. Attack tolerance for services-based applications in the cloud. ICTSS 2019: 31st IFIP International Conference on Testing Software and Systems, Oct 2019, Paris, France. pp.242-258, ⟨10.1007/978-3-030-31280-0_15⟩. ⟨hal-02526356⟩
108 View
80 Download

Altmetric

Share

More