Design and Implementation of an XML Firewall
Web Services provide a means to communicate easily between applications to exchange information. However, the lack in security features provided by Web Services creates a window of opportunities for attackers. This paper presents the design of the architecture and filtering policies for an XML firew...
| Main Authors: | , , , |
|---|---|
| Format: | Article |
| Published: |
2006
|
| Subjects: | |
| Online Access: | http://shdl.mmu.edu.my/2143/ |
| _version_ | 1848789974933045248 |
|---|---|
| author | Loh, Yin-soon Yau, Wei-chuen Wong, Chien-thang Ho, Wai-chuen |
| author_facet | Loh, Yin-soon Yau, Wei-chuen Wong, Chien-thang Ho, Wai-chuen |
| author_sort | Loh, Yin-soon |
| building | MMU Institutional Repository |
| collection | Online Access |
| description | Web Services provide a means to communicate easily between applications to exchange information. However, the lack in security features provided by Web Services creates a window of opportunities for attackers. This paper presents the design of the architecture and filtering policies for an XML firewall. The firewall is implemented using Java language. We conduct a series of tests for verifying the functionality of the firewall. The results of the tests show that the firewall is capable of allowing valid SOAP messages while blocking malicious SOAP messages that contain attacks such as oversized payloads, recursive payloads, and SQL injections. |
| first_indexed | 2025-11-14T18:05:15Z |
| format | Article |
| id | mmu-2143 |
| institution | Multimedia University |
| institution_category | Local University |
| last_indexed | 2025-11-14T18:05:15Z |
| publishDate | 2006 |
| recordtype | eprints |
| repository_type | Digital Repository |
| spelling | mmu-21432011-09-21T08:12:22Z http://shdl.mmu.edu.my/2143/ Design and Implementation of an XML Firewall Loh, Yin-soon Yau, Wei-chuen Wong, Chien-thang Ho, Wai-chuen QA75.5-76.95 Electronic computers. Computer science Web Services provide a means to communicate easily between applications to exchange information. However, the lack in security features provided by Web Services creates a window of opportunities for attackers. This paper presents the design of the architecture and filtering policies for an XML firewall. The firewall is implemented using Java language. We conduct a series of tests for verifying the functionality of the firewall. The results of the tests show that the firewall is capable of allowing valid SOAP messages while blocking malicious SOAP messages that contain attacks such as oversized payloads, recursive payloads, and SQL injections. 2006 Article NonPeerReviewed Loh, Yin-soon and Yau, Wei-chuen and Wong, Chien-thang and Ho, Wai-chuen (2006) Design and Implementation of an XML Firewall. 2006 International Conference on Computational Intelligence and Security, Pts 1 and 2. pp. 1147-1150. http://dx.doi.org/10.1109/ICCIAS.2006.295443 doi:10.1109/ICCIAS.2006.295443 doi:10.1109/ICCIAS.2006.295443 |
| spellingShingle | QA75.5-76.95 Electronic computers. Computer science Loh, Yin-soon Yau, Wei-chuen Wong, Chien-thang Ho, Wai-chuen Design and Implementation of an XML Firewall |
| title | Design and Implementation of an XML Firewall |
| title_full | Design and Implementation of an XML Firewall |
| title_fullStr | Design and Implementation of an XML Firewall |
| title_full_unstemmed | Design and Implementation of an XML Firewall |
| title_short | Design and Implementation of an XML Firewall |
| title_sort | design and implementation of an xml firewall |
| topic | QA75.5-76.95 Electronic computers. Computer science |
| url | http://shdl.mmu.edu.my/2143/ http://shdl.mmu.edu.my/2143/ http://shdl.mmu.edu.my/2143/ |