Survivable Network Systems: An Emerging Discipline

Abstract : Society is growing increasingly dependent upon large scale, highly distributed systems that operate in unbounded network environments. Unbounded networks, such as the Internet, have no central administrative control and no unified security policy. Furthermore, the number and nature of the nodes connected to such networks cannot be fully known. Despite the best efforts of security practitioners, no amount of system hardening can assure that a system that is connected to an unbounded network will be invulnerable to attack. The discipline of survivability can help ensure that such systems can deliver essential services and maintain essential properties such as integrity, confidentiality, and performance, despite the presence of intrusions. Unlike the traditional security measures that require central control or administration, survivability is intended to address unbounded network environments. This report describes the survivability approach to helping assure that a system that must operate in an unbounded network is robust in the presence of attack and will survive attacks that result in successful intrusions. Included are discussions of survivability as an integrated engineering framework, the current state of survivability practice, the specification of survivability requirements, strategies for achieving survivability, and techniques and processes for analyzing survivability.

[1]  Peter Neumann,et al.  Safeware: System Safety and Computers , 1995, SOEN.

[2]  Richard C. Linger Systematic generation of stochastic diversity as an intrusion barrier in survivable systems software , 1999, Proceedings of the 32nd Annual Hawaii International Conference on Systems Sciences. 1999. HICSS-32. Abstracts and CD-ROM of Full Papers.

[3]  Christof Ebert,et al.  Dealing with nonfunctional requirements in large software systems , 1997, Ann. Softw. Eng..

[4]  John D. Musa,et al.  Software reliability - measurement, prediction, application , 1987, McGraw-Hill series in software engineering and technology.

[5]  Rick Kazman,et al.  The architecture tradeoff analysis method , 1998, Proceedings. Fourth IEEE International Conference on Engineering of Complex Computer Systems (Cat. No.98EX193).

[6]  Nancy G. Leveson,et al.  Safeware: System Safety and Computers , 1995 .

[7]  Veena B. Mendiratta Assessing the reliability impacts of software fault-tolerance mechanisms , 1996, Proceedings of ISSRE '96: 7th International Symposium on Software Reliability Engineering.

[8]  Jerome H. Saltzer,et al.  End-to-end arguments in system design , 1984, TOCS.

[9]  C. Trammell,et al.  Quantifying the reliability of software: statistical testing based on a usage model , 1995, Proceedings of Software Engineering Standards Symposium.

[10]  Jon B. Weissman,et al.  Building Secure and Reliable Network Applications [Book Review] , 1998, IEEE Concurrency.

[11]  Kenneth P. Birman,et al.  Building Secure and Reliable Network Applications , 1996 .

[12]  Paul Clements,et al.  Software architecture in practice , 1999, SEI series in software engineering.

[13]  Nancy R. Mead,et al.  Requirements definition for survivable network systems , 1998, Proceedings of IEEE International Symposium on Requirements Engineering: RE '98.

[14]  Harlan D. Mills Certifying the correctness of software , 1992, Proceedings of the Twenty-Fifth Hawaii International Conference on System Sciences.

[15]  David A. Fisher,et al.  Emergent algorithms-a new method for enhancing survivability in unbounded systems , 1999, Proceedings of the 32nd Annual Hawaii International Conference on Systems Sciences. 1999. HICSS-32. Abstracts and CD-ROM of Full Papers.

[16]  Peter G. Neumann,et al.  Effects of multilevel security on real-time applications , 1993, Proceedings of 9th Annual Computer Security Applications Conference.

[17]  Leonard J. Bass,et al.  Scenario-Based Analysis of Software Architecture , 1996, IEEE Softw..

[18]  G. G. Stokes "J." , 1890, The New Yale Book of Quotations.

[19]  M. F.,et al.  Bibliography , 1985, Experimental Gerontology.