面向服务架构的UDDI及攻击效果评估研究

发布时间：2018-04-24 04:17

本文选题：SOA + UDDI　；参考：《沈阳理工大学》2017年硕士论文

【摘要】：随着技术的不断革新,各行各业的服务不断涌现出来,使得服务的集成业务成为了主流趋势。在这种情况下,具有良好耦合性,跨平台性的面向服务架构SOA(Service Oriented Architecture)应用而生,很好的解决了系统的灵活性和互操作性问题,提高了服务的集成业务。而在实现SOA架构的过程中,Web Service作为最佳实现方法,包含了XML、SOAP、UDDI和WSDL等技术,其中UDDI服务注册中心作为SOA架构的枢纽,实现了信息交互,很好地提升了系统的服务发布、查询和集成的性能。然而,UDDI安全性问题却日益凸显,成为了约束UDDI服务注册中心发展的一个重要原因,进而影响SOA的发展。因此分析UDDI机制及其脆弱性,对被攻击系统进行效果评估具有重要意义。本文在研究面向服务架构SOA的特性和结构的基础上,阐述了SOA的最佳实现方法Web Service,分析了其主要的XML、SOAP、UDDI和WSDL技术,重点分析了UDDI技术的标准规范和逻辑结构。从思想、结构和交互三方面设计了基于Web Service的集中式UDDI和分布式UDDI系统模型,实现了指控服务的身份认证、服务发布和服务查询。由于UDDI存在脆弱性,导致系统易受攻击,需对其进行效果评估,具体阐述了评估流程。结合权重确定法和两种评估方法,最终建立了基于层次分析法及模糊综合评估法的评估模型、基于层次分析法及灰色综合评估法的评估模型、基于熵赋权法及模糊综合评估法的评估模型、基于熵赋权法及灰色综合评估法的评估模型、基于综合赋权法及模糊综合评估法的评估模型和基于综合赋权法及灰色综合评估法的评估模型。针对UDDI系统,选取三种拒绝服务攻击类对系统攻击,根据UDDI系统受攻击时的性能与功能的改变,建立了具有针对性的效果评估指标,并通过实验数据的采集,分析及计算,对六种评估模型进行验证,从而验证评估模型的有效性和稳定性。
[Abstract]:With the continuous innovation of technology, services in various industries are emerging, making service integration business become the mainstream trend. In this case, the application of SOA(Service Oriented Architecture, which has good coupling and cross-platform, solves the problems of system flexibility and interoperability, and improves the service integration business. In the process of implementing SOA architecture, web Service is the best method, including XML soap Uddi and WSDL, among which UDDI service register center, as the hub of SOA architecture, realizes information exchange and improves the service publishing of the system. Query and integration performance. However, the security problem of Uddi is becoming more and more prominent, which has become an important reason for constraining the development of UDDI services registry, thus affecting the development of SOA. Therefore, it is of great significance to analyze the UDDI mechanism and its vulnerability and evaluate the effectiveness of the attacked system. On the basis of studying the characteristics and structure of SOA, this paper expounds the best implementation method of SOA, Web Service, analyzes its main XML soap Uddi and WSDL technologies, and emphatically analyzes the standard specification and logical structure of UDDI technology. This paper designs a centralized UDDI and distributed UDDI system model based on Web Service from three aspects of idea, structure and interaction, and realizes the identity authentication, service publishing and service query of the command service. Due to the vulnerability of UDDI, the system is vulnerable to attack. Combined with the weight determination method and two evaluation methods, the evaluation model based on AHP and fuzzy comprehensive evaluation method, and the evaluation model based on AHP and grey comprehensive evaluation method are established. The evaluation model is based on entropy weighting method and fuzzy comprehensive evaluation method, and based on entropy weighting method and grey comprehensive evaluation method. The evaluation model based on comprehensive weight method and fuzzy comprehensive evaluation method, and the evaluation model based on comprehensive weight method and grey comprehensive evaluation method. For UDDI system, three kinds of denial-of-service attack classes are selected to attack the system. According to the change of the performance and function of UDDI system under attack, a targeted effect evaluation index is established, and the collection, analysis and calculation of experimental data are carried out. Six evaluation models are validated to verify the effectiveness and stability of the evaluation models.
【学位授予单位】：沈阳理工大学
【学位级别】：硕士
【学位授予年份】：2017
【分类号】：TP393.08

【参考文献】