Classification of the Intrusion Tolerant Systems and Integrated Framework for Survivability Enhancement

Currently security researchers focus on protection of program and data from malicious users and accidents. Therefore, many firewalls and intrusion detection systems have been developed commercially. The intrusion tolerance is a new concept that is the last line of defense for the information survivability. It emphasizes availability and integrity to provide critical system services continuously even when system is compromised. In this paper, we classify current intrusion tolerant technologies from the point of view of program and data. Furthermore, we propose an integrated framework that supports intrusion tolerance of program and data.

[1]  T. Hollebeek,et al.  Interception, wrapping and analysis framework for Win32 scripts , 2001, Proceedings DARPA Information Survivability Conference and Exposition II. DISCEX'01.

[2]  J. T. Bloch,et al.  Preventing the execution of unauthorized Win32 applications , 2001, Proceedings DARPA Information Survivability Conference and Exposition II. DISCEX'01.

[3]  Michael Atighetchi,et al.  Defense-enabling using advanced middleware-an example , 2001, 2001 MILCOM Proceedings Communications for Network-Centric Operations: Creating the Information Force (Cat. No.01CH37277).

[4]  Feiyi Wang,et al.  SITAR: a scalable intrusion-tolerant architecture for distributed services - a technology summary , 2003, Proceedings DARPA Information Survivability Conference and Exposition.

[5]  Kishor S. Trivedi,et al.  Characterizing intrusion tolerant systems using a state transition model , 2001, Proceedings DARPA Information Survivability Conference and Exposition II. DISCEX'01.

[6]  Eugene H. Spafford,et al.  The design and implementation of tripwire: a file system integrity checker , 1994, CCS '94.

[7]  Rabih Zbib,et al.  Intrusion tolerant middleware , 2001, Proceedings DARPA Information Survivability Conference and Exposition II. DISCEX'01.

[8]  W. Vogels,et al.  Spinglass: secure and scalable communication tools for mission-critical computing , 2001, Proceedings DARPA Information Survivability Conference and Exposition II. DISCEX'01.

[9]  R. Larson,et al.  Linux Kernel , 2003 .