The survivability of survivability

Survivability is typically defined along the following lines: the ability to continue to fulfill a mission even inthe face of attacks and failures. Crucial here is the acknowledgement that it is impossible to foil all attacks andprevent all failures. No single component of a system is immune to failure or subversion.There appear to be a number of technical obstructions to progress towards the goal of designing and evaluatingsurvivable systems:

[1]  Martín Abadi,et al.  Prudent engineering practice for cryptographic protocols , 1994, Proceedings of 1994 IEEE Computer Society Symposium on Research in Security and Privacy.

[2]  Joshua D. Guttman,et al.  Strand spaces: why is a security protocol correct? , 1998, Proceedings. 1998 IEEE Symposium on Security and Privacy (Cat. No.98CB36186).

[3]  J. Jacob,et al.  Basic Theorems About Security , 1992, J. Comput. Secur..

[4]  Peter Y. A. Ryan,et al.  Mathematical Models of Computer Security , 2000, FOSAD.

[5]  A. W. Roscoe,et al.  Automating Data Independence , 2000, ESORICS.

[6]  Michael Goldsmith,et al.  Modelling and analysis of security protocols , 2001 .