| Presentation | 2009-11-13 Vulnerability inspection system for Web application by OS level virtualization Toshiaki SARAYA, Naoto SONE, Masakatu MORII, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | Recently, the spread of Web application poses the problem that the server is attacked due to the incompleteness of vulnerability measures. The server must be operated appropriately by frequently inspecting the vulnerability and measures because Web application is always accessed by an unspecified client. But, in fact Web application isn't updated appropriately due to cost problems of constructing verification environment. Therefore Web application is kept operating at the time of the installation and many sites are remotely attacked. In this paper, we report the verification inspection system for Web application. Verification environment of Web application is easily constructed by using OS level virtualization, and it supports secure operation by vulnerability inspection and operation check of measures. This system enables not only ascertaining presence of vulnerability of Web application operating in verification environment but also reducing HDD consumption by improving the method of generating guest OS in the virtualization of the server. Therefore, verification environment that consists of two or more servers and networks can construct less resources as compared with conventional system. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | OS level virtualization / OpenVZ / Union Mount / aufs / virtual environment for verification |
| Paper # | ICSS2009-56 |
| Date of Issue |
| Conference Information | |
| Committee | ICSS |
|---|---|
| Conference Date | 2009/11/6(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information and Communication System Security (ICSS) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Vulnerability inspection system for Web application by OS level virtualization |
| Sub Title (in English) | |
| Keyword(1) | OS level virtualization |
| Keyword(2) | OpenVZ |
| Keyword(3) | Union Mount |
| Keyword(4) | aufs |
| Keyword(5) | virtual environment for verification |
| 1st Author's Name | Toshiaki SARAYA |
| 1st Author's Affiliation | Graduate School of Engineering, Kobe University() |
| 2nd Author's Name | Naoto SONE |
| 2nd Author's Affiliation | Naruto University of Education |
| 3rd Author's Name | Masakatu MORII |
| 3rd Author's Affiliation | Graduate School of Engineering, Kobe University |
| Date | 2009-11-13 |
| Paper # | ICSS2009-56 |
| Volume (vol) | vol.109 |
| Number (no) | 285 |
| Page | pp.pp.- |
| #Pages | 6 |
| Date of Issue | |