Highly Available Intrusion-Tolerant Services with Proactive-Reactive Recovery

Highly Available Intrusion-Tolerant Services with Proactive-Reactive Recovery

In the past, some research has been done on how to use proactive recovery to build intrusion-tolerant replicated systems that are resilient to any number of faults, as long as recoveries are faster than an upper bound on fault production assumed at system deployment time. In this paper, we propose a...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE transactions on parallel and distributed systems 2010-04, Vol.21 (4), p.452-465
Hauptverfasser: Sousa, P., Bessani, A.N., Correia, M., Neves, N.F., Verissimo, P.
Format: Artikel
Sprache:eng
Schlagworte:
Availability
Case studies
Computer networks
Computer Society
Construction
Design engineering
Energy management
Fault detection
Faults
firewall
Firewalls
Intrusion tolerance
Mission critical systems
Power system security
proactive recovery
Production systems
Protection
reactive recovery
Recovery
Resilience
SCADA systems
Upper bound
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:In the past, some research has been done on how to use proactive recovery to build intrusion-tolerant replicated systems that are resilient to any number of faults, as long as recoveries are faster than an upper bound on fault production assumed at system deployment time. In this paper, we propose a complementary approach that enhances proactive recovery with additional reactive mechanisms giving correct replicas the capability of recovering other replicas that are detected or suspected of being compromised. One key feature of our proactive-reactive recovery approach is that, despite recoveries, it guarantees the availability of a minimum number of system replicas necessary to sustain correct operation of the system. We design a proactive-reactive recovery service based on a hybrid distributed system model and show, as a case study, how this service can effectively be used to increase the resilience of an intrusion-tolerant firewall adequate for the protection of critical infrastructures.
ISSN:1045-9219
1558-2183
DOI:10.1109/TPDS.2009.83