Intrusion Tolerance for Unclassified Networked Systems

Abstract

Information such as security advisories, emergency recommendations, e-government information, etc., is unclassified, but its availability and integrity may be vital. Such data are intended to be made widely available and thus need to be accessible through open networks such as the Internet. The systems distributing this kind of information are usually built from COTS hardware and software, since their functions do not require specific software or hardware development. Openness and use of COTS make these systems very vulnerable, and traditional security means are insufficient to achieve the required availability and integrity. In that case, fault tolerance can be viewed as a complementary, valuable technique to cope with possible intrusions, as well as accidental failures of system components. This paper presents the techniques of intrusion tolerance, and describe some recent experimental architectures, developed by the European project MAFTIA and the DARPA project DIT.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 20, 2004
Accession Number
ADA453235

Entities

People

  • David A. Powell
  • Yves Deswarte

Organizations

  • Laboratory for Analysis and Architecture of Systems

Tags

Communities of Interest

  • Cyber
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Application Software
  • Computer Access Control
  • Computer Programming
  • Computers
  • Contingency Operations (Military)
  • Denial Of Service Attack
  • Detection
  • Detectors
  • Fault Tolerance
  • Information Operations
  • Information Systems
  • Intrusion
  • Intrusion Detection
  • Intrusion Detectors
  • Network Protocols
  • Operating Systems
  • Warning Systems

Fields of Study

  • Computer science

Readers

  • Geospatial Intelligence and Artificial Intelligence Analytics
  • Organizational Process Management (OPM).
  • Sensor Fusion and Tracking Systems.