An ontology-based detection approach aiming to check SOAP messages for XML rewriting attacks is presented. The approach comprises a SOAP message ontology and a set of policy filters. The ontology is used in preserving the message structure including its constituent elements and their relationships. The policy filters check if the message complies with denial-of-service vulnerability restrictions. Message integrity is preserved using the ontology-based checker, which checks that the message has not been modified during the transmission process. Message confidentiality is preserved by encrypting a copy of the message in a log file combined with the message. Time efficiency is achieved by executing the policy filters in a concurrent manner.
%0 Journal Article
%1 noauthororeditor
%A Hamouda, Mahmoud A.
%A Baraka, Rebhi S.
%D 2018
%J International Journal on Web Service Computing (IJWSC)
%K Attack Attacks Coercive Message Ontology Oversized Parameter Replay Rewriting SOAP Tampering XML and
%N 3/4
%P 01-13
%R 10.5121/ijwsc.2018.9401
%T AN ONTOLOGY-BASED APPROACH FOR DETECTING SOAP MESSAGE ATTACKS
%U https://aircconline.com/ijwsc/V9N4/9418ijwsc01.pdf
%V 9
%X An ontology-based detection approach aiming to check SOAP messages for XML rewriting attacks is presented. The approach comprises a SOAP message ontology and a set of policy filters. The ontology is used in preserving the message structure including its constituent elements and their relationships. The policy filters check if the message complies with denial-of-service vulnerability restrictions. Message integrity is preserved using the ontology-based checker, which checks that the message has not been modified during the transmission process. Message confidentiality is preserved by encrypting a copy of the message in a log file combined with the message. Time efficiency is achieved by executing the policy filters in a concurrent manner.
@article{noauthororeditor,
abstract = {An ontology-based detection approach aiming to check SOAP messages for XML rewriting attacks is presented. The approach comprises a SOAP message ontology and a set of policy filters. The ontology is used in preserving the message structure including its constituent elements and their relationships. The policy filters check if the message complies with denial-of-service vulnerability restrictions. Message integrity is preserved using the ontology-based checker, which checks that the message has not been modified during the transmission process. Message confidentiality is preserved by encrypting a copy of the message in a log file combined with the message. Time efficiency is achieved by executing the policy filters in a concurrent manner.},
added-at = {2020-05-20T08:06:54.000+0200},
author = {Hamouda, Mahmoud A. and Baraka, Rebhi S.},
biburl = {https://www.bibsonomy.org/bibtex/20a0090f12054b574dc82702863cd12a4/ijwsc},
doi = {10.5121/ijwsc.2018.9401},
interhash = {8757e9942d5e37800f3ab3d280b6c51d},
intrahash = {0a0090f12054b574dc82702863cd12a4},
issn = {0976 - 9811 (Online); 2230 - 7702 (print)},
journal = {International Journal on Web Service Computing (IJWSC)},
keywords = {Attack Attacks Coercive Message Ontology Oversized Parameter Replay Rewriting SOAP Tampering XML and},
language = {English},
month = {December},
number = {3/4},
pages = {01-13},
timestamp = {2020-05-20T08:06:54.000+0200},
title = {AN ONTOLOGY-BASED APPROACH FOR DETECTING SOAP MESSAGE ATTACKS
},
url = {https://aircconline.com/ijwsc/V9N4/9418ijwsc01.pdf},
volume = 9,
year = 2018
}