Skip to main content
SpringerLink
Log in
Book cover

International Workshop on Critical Information Infrastructures Security

CRITIS 2013: Critical Information Infrastructures Security pp 26–37Cite as

Protecting a Federated Database Infrastructure against Denial-of-Service Attacks

  • Conference paper

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 8328))

Abstract

The need for combining various heterogeneous data sources into a uniformly accessible infrastructure has given rise to the development of federated database systems. Security aspects of such systems have been well-studied, but they have mostly concentrated on privacy and access control issues. In this paper, we take a closer look at the availability problems caused by the network failures, Denial-of-Service attacks, etc. We take the X-Road infrastructure developed in Estonia as the basis of our studies and propose several methods to improve its resilience. We discuss the usage of alternative communication channels, replication of critical databases and replacing the present critical central services with more flexible alternatives.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Apache Hadoop project, http://hadoop.apache.org/

  2. Ansper, A., Buldas, A., Freudenthal, M., Willemson, J.: Scalable and Efficient PKI for Inter-Organizational Communication. In: Proceedings of the 19th Annual Computer Security Applications Conference, ACSAC 2003, pp. 308–318 (2003)

    Google Scholar 

  3. Bent, G., Dantressangle, P., Vyvyan, D., Mowshowitz, A., Mitsou, V.: A dynamic distributed federated database. In: Proc. 2nd Ann. Conf. International Technology Alliance (2008)

    Google Scholar 

  4. Dawson, S., Qian, S., Samarati, P.: Providing security and interoperation of heterogeneous systems. In: Security of Data and Transaction Processing, pp. 119–145. Springer (2000)

    Google Scholar 

  5. De Capitani di Vimercati, S., Samarati, P.: Authorization specification and enforcement in federated database systems. Journal of Computer Security 5(2), 155–188 (1997)

    Google Scholar 

  6. Gardarin, G., Sha, F., Tang, Z.-H.: Calibrating the Query Optimizer Cost Model of IRO-DB, an Object-Oriented Federated Database System. In: VLDB, vol. 96, pp. 3–6 (1996)

    Google Scholar 

  7. Heimbigner, D., McLeod, D.: A federated architecture for information management. ACM Trans. Inf. Syst. 3(3), 253–278 (1985)

    Article  Google Scholar 

  8. Kalja, A.: The X-Road Project. A Project to Modernize Estonia’s National Databases. Baltic IT&T Review 24, 47–48 (2002)

    Google Scholar 

  9. Kalja, A.: The first ten years of X-road. In: Estonian Information Society Yearbook 2011/2012, pp. 78–80. Department of State Information System, Estonia (2012)

    Google Scholar 

  10. Kalja, A., Vallner, U.: Public e-Service Projects in Estonia. In: Haav, H.-M., Kalja, A. (eds.) Databases and Information Sustems, Proceedings of the Fifth International Baltic Conference, Baltic DB&IS 2002, vol. 2, pp. 143–153 (June 2002)

    Google Scholar 

  11. Lim, E.-P., Srivastava, J.: Query optimization and processing in federated database systems. In: Proceedings of the Second International Conference on Information and Knowledge Management, CIKM 1993, pp. 720–722. ACM, New York (1993)

    Chapter  Google Scholar 

  12. Ottis, R.: Analysis of the 2007 Cyber Attacks Against Estonia from the Information Warfare Perspective. In: Proceedings of the 7th European Conference on Information Warfare and Security, pp. 163–168 (2008)

    Google Scholar 

  13. Sheth, A.P., Larson, J.A.: Federated database systems for managing distributed, heterogeneous, and autonomous databases. ACM Comput. Surv. 22(3), 183–236 (1990)

    Article  Google Scholar 

  14. Templeton, M., Henley, H., Maros, E., Van Buer, D.J.: InterViso: dealing with the complexity of federated database access. The VLDB Journal 4(2), 287–318 (1995)

    Article  Google Scholar 

  15. Tomasic, A., Raschid, L., Valduriez, P.: Scaling access to heterogeneous data sources with DISCO. IEEE Transactions on Knowledge and Data Engineering 10(5), 808–823 (1998)

    Article  Google Scholar 

  16. Willemson, J., Ansper, A.: A Secure and Scalable Infrastructure for Inter-Organizational Data Exchange and eGovernment Applications. In: Proceedings of the Third International Conference on Availability, Reliability and Security ARES 2008, pp. 572–577. IEEE Computer Society (2008)

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. Cybernetica AS, Mäealuse 2/1, Tallinn, Estonia

    Arne Ansper, Ahto Buldas, Margus Freudenthal & Jan Willemson

  2. ELIKO Competence Centre in Electronics-, Info- and Communication Technologies, Mäealuse 2/1, Tallinn, Estonia

    Arne Ansper & Ahto Buldas

Authors
  1. Arne Ansper
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Ahto Buldas
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Margus Freudenthal
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Jan Willemson
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. TNO Defence, Safety and Security, Oude Waalsdorperweg 63, 2597 AK, The Hague, The Netherlands

    Eric Luiijf

  2. Distributed and Embedded Security Group, University of Twente, P.O. Box 217, 7500 AE, Enschede, The Netherlands

    Pieter Hartel

Rights and permissions

Reprints and permissions

Copyright information

© 2013 Springer International Publishing Switzerland

About this paper

Cite this paper

Ansper, A., Buldas, A., Freudenthal, M., Willemson, J. (2013). Protecting a Federated Database Infrastructure against Denial-of-Service Attacks. In: Luiijf, E., Hartel, P. (eds) Critical Information Infrastructures Security. CRITIS 2013. Lecture Notes in Computer Science, vol 8328. Springer, Cham. https://doi.org/10.1007/978-3-319-03964-0_3

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-03964-0_3

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-03963-3

  • Online ISBN: 978-3-319-03964-0

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation