Foundations for Survivable System Development: Service Traces, Intrusion Traces, and Evaluation Models
Abstract
Survivability is a new branch of dependability. It addresses explicit requirements for restricted modes of operation that preserve mission-critical essential services in adverse operational environments. A survivable system is one that satisfies its survivability specification of essential services and adverse environments. On the system side, survivability specifications can be defined by essential-service traces that map essential-service workflows, derived from user requirements, into system component dependencies and required survivability attributes. On the environment side, survivability specifications can be defined by intrusion traces that map intruder work flows, derived from attack patterns, into compromisable system components. Survivability design applies resistance, recognition, and recovery strategies to maintain essential-service workflows where possible despite compromised components. Test environments for survivable system implementations can be defined by survivability evaluation models that merge essential-service and intruder workflows into usage-based, statistically valid test suites. This paper describes initial results of research in these areas.
Document Details
- Document Type
- Technical Report
- Publication Date
- Oct 01, 2001
- Accession Number
- ADA396638
Entities
People
- Andrew P. Moore
- Richard C. Linger
Organizations
- Carnegie Mellon University