SARA: Survivable Autonomic Response Architecture
Abstract
This paper describes the architecture of a system being developed to defend information systems using coordinated autonomic responses. The system will also be used to test the hypothesis that an effective defense against fast, distributed information attacks requires rapid, coordinated, network-wide responses. The core components of the architecture are a run-time infrastructure (RTI), a communication language, a system model, and defensive components. The RTI incorporates a number of innovative design concepts and provides fast, reliable, exploitation-resistant communication and coordination services to the components defending the network, even when challenged by a distributed attack. The architecture can be tailored to provide scalable information assurance defenses for large, geographically distribute, heterogeneous networks with multiple domains, each of which uses different technologies and requires different policies. The architecture can form the basis of a field-deployable system. An initial version is being developed for evaluation in a testbed that will be used to test the autonomic coordination and response hypothesis.
Document Details
- Document Type
- Technical Report
- Publication Date
- Mar 23, 2001
- Accession Number
- ADA408307
Entities
People
- Daniel J. Van Hook
- Gerald C. O'leary
- Joshua W. Haines
- Lee M. Rossey
- Scott M. Lewandowsky
Organizations
- Massachusetts Institute of Technology