Homogeneity as an advantage: it takes a community to protect an application

Authors:
Linda Briesemeister;Steven Dawson;Patrick Lincoln;Hassen Saidi;Jim Thornton;Glenn Durfee;Peter Kwan;Elizabeth Stinson;Adam J. Oliner;John C. Mitchell
Affiliations:
SRI International;SRI International;SRI International;SRI International;PARC;Google Inc. and PARC;PARC;Stanford University;Stanford University;Stanford University
Venue:
CollSec'10 Proceedings of the 2010 international conference on Collaborative methods for security and privacy
Year:
2010

Citing 16
Cited 0

Generative communication in Linda

ACM Transactions on Programming Languages and Systems (TOPLAS)
The Doctor Is In: Helping End Users Understand the Health of Distributed Systems

DSOM '00 Proceedings of the 11th IFIP/IEEE International Workshop on Distributed Systems: Operations and Management: Services Management in Intelligent Networks
Indra: A peer-to-peer approach to network intrusion detection and prevention

WETICE '03 Proceedings of the Twelfth International Workshop on Enabling Technologies: Infrastructure for Collaborative Enterprises
STRIDER: A Black-box, State-based Approach to Change and Configuration Management and Support

LISA '03 Proceedings of the 17th USENIX conference on System administration
Rootkits: Subverting the Windows Kernel

Rootkits: Subverting the Windows Kernel
Towards self-healing systems: re-establishing trust in compromised systems

Towards self-healing systems: re-establishing trust in compromised systems
Automatic misconfiguration troubleshooting with peerpressure

OSDI'04 Proceedings of the 6th conference on Symposium on Opearting Systems Design & Implementation - Volume 6
Directing change using Bcfg2

LISA '06 Proceedings of the 20th conference on Large Installation System Administration
Detours: binary interception of Win32 functions

WINSYM'99 Proceedings of the 3rd conference on USENIX Windows NT Symposium - Volume 3
Flight data recorder: monitoring persistent-state interactions to improve systems management

OSDI '06 Proceedings of the 7th symposium on Operating systems design and implementation
Collaborative Intrusion Prevention

WETICE '07 Proceedings of the 16th IEEE International Workshops on Enabling Technologies: Infrastructure for Collaborative Enterprises
Overshadow: a virtualization-based approach to retrofitting protection in commodity operating systems

Proceedings of the 13th international conference on Architectural support for programming languages and operating systems
A taxonomy of intrusion response systems

International Journal of Information and Computer Security
BotHunter: detecting malware infection through IDS-driven dialog correlation

SS'07 Proceedings of 16th USENIX Security Symposium on USENIX Security Symposium
Characterizing Bots' Remote Control Behavior

DIMVA '07 Proceedings of the 4th international conference on Detection of Intrusions and Malware, and Vulnerability Assessment
Cooperating security managers: a peer-based intrusion detection system

IEEE Network: The Magazine of Global Internetworking

Quantified Score

Hi-index	0.00

Visualization

Abstract

We examine how to turn the scale of a large homogeneous software deployment from an operational and security disadvantage into an advantageous application community that can detect, diagnose, and recover from its own operational faults and malicious attacks. We propose a system called VERNIER that provides a virtualized execution environment in conjunction with collaborative diagnosis and response functions using a knowledge-sharing infrastructure. We report on the preliminary implementation of the system, its experimental evaluation, and lessons learned during development.