| Intrusion tolerance (IT) is a new approach of information security that has slowly emerged during the past decade, and gained impressive momentum recently. Instead of trying to prevent every single intrusion, these are allowed, but tolerated: the system triggers tolerance mechanisms that prevent the intrusion from generating a system security failure and provide normal or graceful degradation service for users.The dissertation describes the fundamental concepts of IT, identifying classes of intrusion-tolerant architectures in terms of different criterions, discussing the main technologies and mechanisms for architecting IT systems, and reporting recent advances on IT system architectures. Subsequently, we present an open system with intrusion tolerance ability-Adaptive Intrusion-tolerant system, which consists of tolerance-proxy layer, voting layer and redundancy-server layer. This system can tolerate known vulnerabilities as well as unknown vulnerabilities by providing adaptation, redundancy and diversity. After detecting attacks, the system provides continuous normal or degraded services for users using server adaptation and request filtering.Finally, we research two main technologies: reliable multicast and majority voting. We also discuss open issues and particular challenging problems as well as future research directions.
|
PDF Full Text Request