Singhal, A.
, Gunestas, M.
and Wijesekera, D.
(2010),
Forensics Web Services, NIST Interagency/Internal Report (NISTIR), National Institute of Standards and Technology, Gaithersburg, MD, [online], https://doi.org/10.6028/NIST.IR.7559, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=905306
(Accessed April 26, 2024)
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Forensics Web Services
Published
Author(s)
, Murat Gunestas, Duminda Wijesekera
Abstract
Web services are currently a preferred way to architect and provide complex services. This complexity arises due to the composition of new services and dynamically invoking existing services. These compositions create service inter-dependencies that can be misused for monetary or other gains. When a misuse is reported, investigators have to navigate through a collection of logs to recreate the attack. In order to facilitate that task, we propose creating forensics web services (FWS) that would securely maintain transactional records between other web services. These secure records can be re-linked to reproduce the transactional history by an independent agency. In this report we show the necessary components of a forensic framework for web services and its success through a case study.Citation
NIST Interagency/Internal Report (NISTIR) - 7559
Report Number
7559
NIST Pub Series
Pub Type
NIST Pubs
Download Paper
Keywords
accountable services, digital forensics, services oriented architecture, web services
Citation
Created June 29, 2010, Updated October 14, 2021