CoBFIT: A component-based framework for intrusion tolerance

Ramasamy, H.V.; Agbaria, A.; Sanders, W.H.

doi:10.1109/eurmic.2004.1333427

Cited by 3 publications

(2 citation statements)

References 15 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…CoBFIT is a framework defined with the objective of supporting the construction of intrusion-tolerant applications using components (Ramasamy et al, 2004). CoBFIT is a framework, not a system, but its usage has been demonstrated using ITUA's intrusion-tolerant group communication system.…”

Section: Related Workmentioning

confidence: 99%

Worm-IT – A wormhole-based intrusion-tolerant group communication system

Correia

Neves

Lung

et al. 2007

Journal of Systems and Software

View full text Add to dashboard Cite

Section: Related Workmentioning

confidence: 99%

Worm-IT – A wormhole-based intrusion-tolerant group communication system

Correia

Neves

Lung

et al. 2007

Journal of Systems and Software

View full text Add to dashboard Cite

“…A Component Based Framework for Intrusion Tolerance (CoBFIT) [5] provides a platform for building and testing a variety of Intrusion tolerant distributed systems. The CoBFIT framework, by virtue of its design and implementation principles, can serve as a convenient base for building components that implement intrusion-tolerant protocols and for combining these components in an efficient manner to provide a number of services for dependability.…”

Section: Related Workmentioning

confidence: 99%

A Framework for Intrusion Tolerance in Cloud Computing

Karande¹,

Pais²

2011

Advances in Computing and Communications

View full text Add to dashboard Cite

Abstract. Cloud Computing has been envisioned as the next generation architecture and one of the fastest growing segments of the IT enterprises. No matter how much investment is made in cloud intrusion detection and prevention, cloud infrastructure remains vulnerable to attacks. Intrusion Tolerance in Cloud Computing is a fault tolerant design approach to defend cloud infrastructure against malicious attacks. Thus to ensure dependability we present a framework by mapping available Malicious and Accidental Fault Tolerance for Internet Applications (MAFTIA) intrusion tolerance framework for dependencies such as availability, authenticity, reliability, integrity, maintainability and safety against new Cloud Computing environment. The proposed framework has been validated by integrating Intrusion Tolerance via Threshold Cryptography (ITTC) mechanism in the simulated cloud environment. Performance analysis of the proposed framework is also done.

show abstract

Experiences with building an intrusion‐tolerant group communication system

et al. 2007

View full text Add to dashboard Cite

There are many group communication systems (GCSs) that provide consistent group membership and reliable, ordered multicast properties in the presence of crash faults. However, relatively few GCS implementations are able to provide these properties in the presence of malicious faults resulting from intrusions. We describe the systematic transformation of a crash‐tolerant GCS, namely C‐Ensemble, into an intrusion‐tolerant GCS, the ITUA GCS. To perform the transformation, we devised intrusion‐tolerant versions of key group communication protocols. We then inserted implementations of the protocols into C‐Ensemble and made significant changes to the rest of the C‐Ensemble protocol stack to make the stack intrusion tolerant. We quantify the cost of providing intrusion‐tolerant group communication in two ways. First, we quantify the implementation effort by presenting a detailed analysis of the amount of change required to the original C‐Ensemble system. In doing so, we provide insight into the choice of building an intrusion‐tolerant GCS from scratch versus building one by leveraging a crash‐tolerant implementation. Second, we quantify the run‐time performance cost of tolerating intrusions by presenting results from an experimental evaluation of the main intrusion‐tolerant microprotocols. The results are analyzed to identify the parts that contribute the most overhead while providing intrusion tolerance during both normal operation and recovery from intrusions. Copyright © 2007 John Wiley & Sons, Ltd.

show abstract

CoBFIT: A component-based framework for intrusion tolerance

Cited by 3 publications

References 15 publications

Worm-IT – A wormhole-based intrusion-tolerant group communication system

Worm-IT – A wormhole-based intrusion-tolerant group communication system

A Framework for Intrusion Tolerance in Cloud Computing

Experiences with building an intrusion‐tolerant group communication system

Contact Info

Product

Resources

About