語系:
繁體中文
English
說明(常見問題)
回圖書館首頁
手機版館藏查詢
登入
回首頁
切換:
標籤
|
MARC模式
|
ISBD
Session management for accountabilit...
~
Conner, William Gary, II.
FindBook
Google Book
Amazon
博客來
Session management for accountability in distributed multimedia services.
紀錄類型:
書目-電子資源 : Monograph/item
正題名/作者:
Session management for accountability in distributed multimedia services./
作者:
Conner, William Gary, II.
面頁冊數:
110 p.
附註:
Source: Dissertation Abstracts International, Volume: 71-03, Section: B, page: 1803.
Contained By:
Dissertation Abstracts International71-03B.
標題:
Computer science. -
電子資源:
http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=3399589
ISBN:
9781109655841
Session management for accountability in distributed multimedia services.
Conner, William Gary, II.
Session management for accountability in distributed multimedia services.
- 110 p.
Source: Dissertation Abstracts International, Volume: 71-03, Section: B, page: 1803.
Thesis (Ph.D.)--University of Illinois at Urbana-Champaign, 2009.
This item is not available from ProQuest Dissertations & Theses.
Internet-based multimedia applications (e.g., voice-over-IP, instant messaging, and video conferencing) are continuing to grow in importance as more people depend on such applications for personal and professional communications. Although performance is almost always a concern with multimedia systems that must satisfy quality-of-service (QoS) constraints, security is also a major requirement given the increasing criticality of such applications. For example, businesses might depend on Internet telephony to reach customers while governments might depend on video streaming to disseminate information. For distributed multimedia services, in addition to the traditional security properties (confidentiality, integrity, and availability), accountability is also important to complement perimeter defenses. Accounting for user actions within the system enables the development of higher-level security services.
ISBN: 9781109655841Subjects--Topical Terms:
523869
Computer science.
Session management for accountability in distributed multimedia services.
LDR
:06150nmm a2200385 4500
001
2060476
005
20150828095239.5
008
170521s2009 ||||||||||||||||| ||eng d
020
$a
9781109655841
035
$a
(MiAaPQ)AAI3399589
035
$a
AAI3399589
040
$a
MiAaPQ
$c
MiAaPQ
100
1
$a
Conner, William Gary, II.
$3
3174638
245
1 0
$a
Session management for accountability in distributed multimedia services.
300
$a
110 p.
500
$a
Source: Dissertation Abstracts International, Volume: 71-03, Section: B, page: 1803.
500
$a
Adviser: Klara Nahrstedt.
502
$a
Thesis (Ph.D.)--University of Illinois at Urbana-Champaign, 2009.
506
$a
This item is not available from ProQuest Dissertations & Theses.
506
$a
This item must not be sold to any third party vendors.
506
$a
This item must not be added to any third party search indexes.
520
$a
Internet-based multimedia applications (e.g., voice-over-IP, instant messaging, and video conferencing) are continuing to grow in importance as more people depend on such applications for personal and professional communications. Although performance is almost always a concern with multimedia systems that must satisfy quality-of-service (QoS) constraints, security is also a major requirement given the increasing criticality of such applications. For example, businesses might depend on Internet telephony to reach customers while governments might depend on video streaming to disseminate information. For distributed multimedia services, in addition to the traditional security properties (confidentiality, integrity, and availability), accountability is also important to complement perimeter defenses. Accounting for user actions within the system enables the development of higher-level security services.
520
$a
This dissertation will present the Kantoku framework, which includes several different accounting mechanisms for different environments ranging from single servers to server clusters to computing clouds. Our framework focuses on distributed multimedia services deployed in such environments. In particular, we will show how our Kantoku framework can be used to address the problem of transaction state overload on multimedia servers.
520
$a
The primary attack that we consider throughout this dissertation is a novel denial-of-service attack that intentionally induces transaction state overload at multimedia servers. We refer to this attack as a Ringing -based denial-of-service attack. Unlike many denial-of-service attacks that rely on an increase in the incoming traffic rate, a Ringing-based denial-of-service attack only requires an increase in the transaction durations while the incoming traffic rate does not change. Such attacks cannot be detected by protection mechanisms that monitor the network traffic for anomalies. After briefly explaining some background information on the Session Initiation Protocol, we characterize transaction state accumulation during a Ringing-based denial-of-service attack both mathematically and empirically through extensive experiments.
520
$a
The first solution to preventing transaction state overload that we present is a family of early termination algorithms that selectively terminate transactions suspected of causing transaction state overload in multimedia servers. This protection mechanism relies on per-transaction accounting at a single server. The three algorithms that we developed are thoroughly evaluated in the context of Ringing-based denial-of-service attacks with experiments on a local testbed.
520
$a
As an alternative to early termination, we also developed two admission control algorithms that selectively reject transaction requests from users suspected of consuming more than their fair share of transaction resources among a group of multimedia servers. This protection mechanism relies on per-client accounting across a cluster of multimedia servers. The two algorithms that we developed are thoroughly evaluated in the context of Ringing-based denial-of-service attacks with experiments on a local testbed.
520
$a
For service-oriented environments, we developed a distributed accounting architecture to implement accountability for distributed multimedia services. Specifically, our accounting architecture considers per-client monitoring for accounting across a potentially large number of nodes that are geographically distributed across a wide area network, Using the distributed accounting architecture, we built a reputation-based trust management framework that allows distributed multimedia services to share and retrieve relevant trust information that can be applied to their server-side access control decisions in a customized fashion. We briefly explain how the Ringing-based denial-of-service attack problem can be reduced to a reputation-based trust management problem. We also evaluate the performance of the implementation of our trust management framework both in terms of throughput and latency.
520
$a
This dissertation makes contributions in three major areas. The first area is the introduction and detailed analysis of the Ringing-based denial-of-service attack, which is a type of malicious transaction state overload that targets multimedia servers running the Session Initiation Protocol. The second area includes early termination and admission control algorithms for specifically mitigating the effects of Ringing-based denial-of-service attacks. The final area includes our distributed accounting architecture and the reputation-based trust management system that uses this accounting architecture. Although our accounting architecture and reputation-based trust management system are applicable to many general problems related to accountability, we consider how they can be applied to the problem of Ringing-based denial-of-service attacks.
590
$a
School code: 0090.
650
4
$a
Computer science.
$3
523869
650
4
$a
Multimedia communications.
$3
590562
690
$a
0984
690
$a
0558
710
2
$a
University of Illinois at Urbana-Champaign.
$3
626646
773
0
$t
Dissertation Abstracts International
$g
71-03B.
790
$a
0090
791
$a
Ph.D.
792
$a
2009
793
$a
English
856
4 0
$u
http://pqdd.sinica.edu.tw/twdaoapp/servlet/advanced?query=3399589
筆 0 讀者評論
館藏地:
全部
電子資源
出版年:
卷號:
館藏
1 筆 • 頁數 1 •
1
條碼號
典藏地名稱
館藏流通類別
資料類型
索書號
使用類型
借閱狀態
預約狀態
備註欄
附件
W9293134
電子資源
11.線上閱覽_V
電子書
EB
一般使用(Normal)
在架
0
1 筆 • 頁數 1 •
1
多媒體
評論
新增評論
分享你的心得
Export
取書館
處理中
...
變更密碼
登入