Skip to main content
U.S. flag

An official website of the United States government

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Forensics Web Services

Published

Author(s)

Anoop Singhal, Murat Gunestas, Duminda Wijesekera

Abstract

Web services are currently a preferred way to architect and provide complex services. This complexity arises due to the composition of new services and dynamically invoking existing services. These compositions create service inter-dependencies that can be misused for monetary or other gains. When a misuse is reported, investigators have to navigate through a collection of logs to recreate the attack. In order to facilitate that task, we propose creating forensics web services (FWS) that would securely maintain transactional records between other web services. These secure records can be re-linked to reproduce the transactional history by an independent agency. In this report we show the necessary components of a forensic framework for web services and its success through a case study.
Citation
NIST Interagency/Internal Report (NISTIR) - 7559
Report Number
7559

Keywords

accountable services, digital forensics, services oriented architecture, web services

Citation

Singhal, A. , Gunestas, M. and Wijesekera, D. (2010), Forensics Web Services, NIST Interagency/Internal Report (NISTIR), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.IR.7559, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=905306 (Accessed November 2, 2024)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created June 29, 2010, Updated October 14, 2021