Paper Info
Title
Design Issues Of A Hybrid Wrapping Attack Protecting Scheme In Cloud Computing Environment
Abstract
In the cloud era, cloud security and user privacy have become important issues. Since cloud users often use web browsers to request services from the cloud service providers, when a signed message request is sent to the service receiver from the service provider, attackers can use wrapping attacks to tamper with the SOAP message transferred through the internet in order to avoid legal verifications and access web services without being detected to implement wrapping attacks. This paper is to integrate and improve Node Counting mechanism to propose a hybrid wrapping attack protection scheme called HWRAP.This HWRAP is a continuation on the Node Counting method and the determining conditions were improved and divided into three modules interception, detection and logging; it performs analysis to the incoming SOAP requests. Not only does it compare the number of times the child node appears, it also performs detection to the elements on the path between the root node to the final node in order to enhance the verification procedure on the detection module. The simulation results of KPIs indicate that the Detection rate can be increased by 2%, 3.8%, 3.7%, and 2.8%; the Accuracy rate can be increased by 8%, 7%, 10.5%, and 9.5% in 50, 100, 200, and 500 packet requests, respectively. Consequently, the HWRAP scheme has a higher detection rate and better accuracy rate than Node Counting for detecting wrapping attacks. The final results show that the proposed HWRAP can identify attackers more accurately and enhance the security and quality of cloud services.
Year
DOI
Venue
2019
10.1007/978-3-030-34986-8_8
ADVANCES IN E-BUSINESS ENGINEERING FOR UBIQUITOUS COMPUTING
Keywords
DocType
Volume
Cloud computing, Wrapping attacks, HWRAP, Node counting, SOAP
Conference
41
ISSN
Citations 
PageRank 
2367-4512
0
0.34
References 
Authors
0
2
Name
Order
Citations
PageRank
Shin-Jer Yang101.35
Yu-Hsuan Huang245.52