In the hope of recreating the scene of the crime in the aftermath of a cyber attack, scientists from the National Institute of Standards and Technology have proposed designing Web services, which they dub Forensic Web Services, that save evidence of attacks and then use that data to reconstruct series of Web service invocations that took place during the course of the attacks.
According to InformationWeek:
The service would record transactions — whenever they are invoked — between pairs of services, and piece them together into pictures of the complex transactional scenarios that occurred during specific time periods, such as during an attack.
Researchers say that the system could work with Web services based on XML, Simple Object Access Protocol (SOAP) and related open standards.
