Building Intrusion Tolerant Applications

Abstract

The ITTC project (Intrusion Tolerance via Threshold Cryptography) developed tools and an infrastructure for building intrusion tolerant applications. Rather than prevent intrusions or detect them after the fact, the ITTC system ensures that the compromise of a few system components does not compromise sensitive security information. To do so, the system protects cryptographic keys by distributing them across a few servers. The keys are never reconstructed at a single location. The design is intended to simplify the integration of ITTC into existing applications. Examples are given for embedding ITTC into the Apache web server and into a Certification Authority(CA). Performance measurements on both the modified web server and the modified CA show that the architecture works and performs well.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2001
Accession Number
ADA387357

Entities

People

  • Dan Boneh
  • Michael Malkin
  • Thomas Wu

Tags

Communities of Interest

  • Energy and Power Technologies
  • Materials and Manufacturing Processes
  • Space

DTIC Thesaurus Topics

  • Air Force
  • Air Force Research Laboratories
  • Authentication
  • Computer Programs
  • Computer Science
  • Contracts
  • Cryptography
  • Denial Of Service Attack
  • Information Operations
  • Intrusion
  • Military Research
  • Performance Tests
  • Security
  • Software Development
  • Standards
  • Systems Science
  • Web Browsers

Fields of Study

  • Computer science

Readers

  • Climatology
  • Computer Networking
  • Cybersecurity.

Technology Areas

  • Cyber
  • Cyber - Cryptography