FOREVER assessment : modelling details Technical report RCL 081215

This technical report provides a complete and exhaustive (even if preliminary) description of the preliminary assessment of the FOREVER (Fault/intrusiOn REmoVal through Evolution & Recovery) service. The assessment of the FOREVER service aims to quantify how much the FOREVER service enhances the resilience of the system in which it is implemented. The assessment of the FOREVER service is performed by evaluating the probability of system failure through variation of a few parameters, such as i) the time between recoveries, ii) the penalty due when diversity is not applied, iii) the probability of common vulnerabilities and iv) the mean effectiveness of configuration diversity rules applied.

[1]  Andrea Bondavalli,et al.  DEEM: a tool for the dependability modeling and evaluation of multiple phased systems , 2000, Proceeding International Conference on Dependable Systems and Networks. DSN 2000.

[2]  Miguel Correia,et al.  Resilient Intrusion Tolerance through Proactive and Reactive Recovery , 2007, 13th Pacific Rim International Symposium on Dependable Computing (PRDC 2007).

[3]  Robbert van Renesse,et al.  COCA: a secure distributed online certification authority , 2002, Foundations of Intrusion Tolerant Systems, 2003 [Organically Assured and Survivable Information Systems].

[4]  Miguel Castro,et al.  Practical byzantine fault tolerance and proactive recovery , 2002, TOCS.

[5]  Andrea Bondavalli,et al.  Analysis of a Redundant Architecture for Critical Infrastructure Protection , 2008, WADS.