Title: Implementation and Evaluation of Simultaneous Session Limitation Mechanism

Year of Publication: Aug - 2019
Page Numbers: 24-31
Authors: Ryo SHIBAHARA, Hiroki TONE, Keizo SAISHO
Conference Name: The Fifth International Conference on Electronics and Software Science (ICESS2019)
- Japan

Abstract:


Responsiveness of Web servers is lowered when they are overloaded caused by a lot of requests from clients. Moreover, Web servers are required to be not only available but also stable especially for interactive Web application. In this paper, a mechanism which limits the number of simultaneous sessions using firewall is proposed in order to provide stable Web services. The mechanism consists of authentication server, firewall and user identification server. Authentication server authenticates user and registers IP address of his machine with firewall when the number of current simultaneous sessions is less than the specified number.After this, authenticated users can access Web server. However, users can access the Web server without authentication when they use same NAT environment or proxy server as authenticated users. User identification server detects access from unauthenticated users and blocks them. This paper describes implementation of user authentication server and user identification server, and evaluation of them. From results of evaluations, we confirm that user authentication server can authenticate and user identification server has tolerance of attack with unauthenticated users.