A Sense of Time for {JavaScript} and Node. js:{First-Class} Timeouts as a Cure for Event Handler Poisoning
The software development community is adopting the Event-Driven Architecture (EDA) to
provide scalable web services, most prominently through Node. js. Though the EDA scales
well, it comes with an inherent risk: the Event Handler Poisoning (EHP) Denial of Service
attack. When an EDA-based server multiplexes many clients onto few threads, a blocked
thread (EHP) renders the server unresponsive. EHP attacks are a serious threat, with
hundreds of vulnerabilities already reported in the wild.
provide scalable web services, most prominently through Node. js. Though the EDA scales
well, it comes with an inherent risk: the Event Handler Poisoning (EHP) Denial of Service
attack. When an EDA-based server multiplexes many clients onto few threads, a blocked
thread (EHP) renders the server unresponsive. EHP attacks are a serious threat, with
hundreds of vulnerabilities already reported in the wild.
Abstract
The software development community is adopting the Event-Driven Architecture (EDA) to provide scalable web services, most prominently through Node. js. Though the EDA scales well, it comes with an inherent risk: the Event Handler Poisoning (EHP) Denial of Service attack. When an EDA-based server multiplexes many clients onto few threads, a blocked thread (EHP) renders the server unresponsive. EHP attacks are a serious threat, with hundreds of vulnerabilities already reported in the wild.
usenix.org
Показан е най-добрият резултат за това търсене. Показване на всички резултати