A Lightweight Intrusion-Tolerant Overlay Network

Obelheiro, Rafael R.; Fraga, Joni da Silva

doi:10.1109/isorc.2006.7

Cited by 7 publications

(2 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…We assume fault independence for servers, i.e., the probability of a server being faulty is independent of another server being faulty. This assumption can be substantiated in practice through the use of diversity (Obelheiro et al, 2006). WSDS works correctly while a bound of up f n ≤ (n+1)/3 DepSpace servers (the optimal resilience for this type of replication (Castro & Liskov 2002)), f g ≤ g -1 gateways (at least one correct) and an arbitrary number of client fails.…”

Section: System Modelmentioning

confidence: 91%

A Dependable Infrastructure for Cooperative Web Services Coordination

Alchieri

Bessani

Fraga

2010

International Journal of Web Services Research

View full text Add to dashboard Cite

A current trend in the web services community is to define coordination mechanisms to execute collaborative tasks involving multiple organizations. Following this tendency, in this paper the authors present a dependable (i.e., intrusion-tolerant) infrastructure for cooperative web services coordination that is based on the tuple space coordination model. This infrastructure provides decoupled communication and implements several security mechanisms that allow dependable coordination even in presence of malicious components. This work also investigates the costs related to the use of this infrastructure and possible web service applications that can benefit from it.

show abstract

Section: System Modelmentioning

confidence: 91%

A Dependable Infrastructure for Cooperative Web Services Coordination

Alchieri

Bessani

Fraga

2010

International Journal of Web Services Research

View full text Add to dashboard Cite

show abstract

“…When deliberate attacks are considered, as in intrusion tolerance, this measure becomes even more relevant. Interestingly, location diversity can be easily joined with diverse administration domains characterizing the different sites, so further improving the defense against attackers (Obelheiro et al, 2006). In the following it is assumed that the defender has s sites at disposal and can distribute the variants among the sites.…”

Section: 21mentioning

confidence: 99%

Redundancy-based intrusion tolerance approaches moving from classical fault tolerance methods

Di Giandomenico,

Masetti,

Chiaradonna

2022

International Journal of Applied Mathematics and Computer Scien

View full text Add to dashboard Cite

Borrowing from well known fault tolerant approaches based on redundancy to mask the effect of faults, redundancybased intrusion tolerance schemes are proposed in this paper, where redundancy of ICT components is exploited as a first defense line against a subset of compromised components within the redundant set, due to cyberattacks. Features to enhance defense and tolerance capabilities are first discussed, covering diversity-based redundancy, confusion techniques, protection mechanisms, locality policies and rejuvenation phases. Then, a set of intrusion tolerance variations of classical fault tolerant schemes (including N Version Programming and Recovery Block, as well as a few hybrid approaches) is proposed, by enriching each original scheme with one or more of the previously introduced defense mechanisms. As a practical support to the system designer in making an appropriate choice among the available solutions, for each developed scheme a schematic summary is provided, in terms of resources and defense facilities needed to tolerate f value failures and k omission failures, as well as observations regarding time requirements. To provide an example of more detailed analysis, useful to set up an appropriate intrusion tolerance configuration, a trade-off study between cost and additional redundancy employed for confusion purposes is also carried out.

show abstract