Automated adaptive intrusion containment in systems of interacting services
Computer Networks: The International Journal of Computer and Telecommunications Networking
Journal of Systems and Software
EUC'07 Proceedings of the 2007 conference on Emerging direction in embedded and ubiquitous computing
Optimizing security measures in an intrusion tolerant database system
ISAS'08 Proceedings of the 5th international conference on Service availability
Availability analysis of an IMS-based VoIP network system
ICCSA'10 Proceedings of the 2010 international conference on Computational Science and Its Applications - Volume Part IV
| Hi-index | 0.00 |
MAFTIA was a three-year European researchproject that explored the use of fault-tolerancetechniques to build intrusion-tolerant systems. TheMAFTIA architecture embodies a number of key designprinciples for building intrusion-tolerant systems,such as the notion of distributing trust throughout thesystem and limiting the extent to which individualcomponents are trusted, and the aim of this paper isto illustrate these principles and demonstrateMAFTIA's intrusion-tolerance capabilities by showinghow MAFTIA mechanisms and protocols might bedeployed in a realistic context. We discuss therelationship between intrusion tolerance and faulttolerance, and then describe how the MAFTIAarchitecture could be used to build an intrusion-tolerantversion of a hypothetical e-commerceapplication. Using fault trees, we analyse possibleattack scenarios and show how MAFTIA mechanismsprotect against them. We conclude the paper with adiscussion of related work and identify areas forfuture research.