论文信息 - Atomic multicast protocol for intrusion-tolerance based on trusted timely computing base

Atomic multicast protocol for intrusion-tolerance based on trusted timely computing base

Abstract Distributed architecture is often adopted for the intrusion-tolerance system currently. However, this distributed intrusion- tolerance system has a consensus problem. To solve this problem, this article explores a distributed intrusion-tolerance system of hybrid time model based on trusted timely computing base (TTCB) and implement an atomic multicast protocol using TTCB services. The TTCB is a trust secure real-time component inside the server, with a well defined interface and separated from the operation system. It is in the synchronous communication environment, while the application layer in the server works asynchronously. By the atomic multicast protocol, it can be achieved that when the servers are over twice the number of faulty servers, the consensus can be satisfied. The performance evaluations show that the proposed protocol can yield larger good throughput with a lower unavailability.

Hua Zhou | Li Zhang | Xiangru Meng | Xiang-dong Qiao

[1] Miguel Correia,et al. A Simple Intrusion-Tolerant Reliable Multicast Protocol using the TTCB , 2003 .

[2] Miguel Correia,et al. Randomized Intrusion-Tolerant Asynchronous Services , 2006, International Conference on Dependable Systems and Networks (DSN'06).

[3] Michael K. Reiter. A Secure Group Membership Protocol , 1996, IEEE Trans. Software Eng..

[4] Antonio Casimiro,et al. The Timely Computing Base Model and Architecture , 2002, IEEE Trans. Computers.

[5] William H. Sanders,et al. Dependability and Performance Evaluation of Intrusion-Tolerant Server Architectures , 2003, LADC.

[6] Miguel Correia,et al. The Design of a COTSReal-Time Distributed Security Kernel , 2002, EDCC.

[7] Miguel Correia,et al. How to tolerate half less one Byzantine nodes in practical distributed systems , 2004, Proceedings of the 23rd IEEE International Symposium on Reliable Distributed Systems, 2004..

[8] David Powell,et al. A fault- and intrusion- tolerant file system , 1985 .

[9] Michael Dahlin,et al. Making Byzantine Fault Tolerant Systems Tolerate Byzantine Faults , 2009, NSDI.

[10] Miguel Correia,et al. Worm-IT - A wormhole-based intrusion-tolerant group communication system , 2007, J. Syst. Softw..