An architecture for adaptive intrusion-tolerant applications

Partha Pal, Paul Rubel, Michael Atighetchi, Franklin Webber, William H. Sanders, Mouna Seri, Harigovin Ramasamy, James Lyons, Tod Courtney, Adnan Agbaria, Michel Cukier, Jeanna Gossett, Idit Keidar

Research output: Contribution to journalArticlepeer-review

Abstract

Applications that are part of a mission-critical information system need to maintain a usable level of key services through ongoing cyber-attacks. In addition to the well-publicized denial of service (DoS) attacks, these networked and distributed applications are increasingly threatened by sophisticated attacks that attempt to corrupt system components and violate service integrity. While various approaches have been explored to deal with DoS attacks, corruption-inducing attacks remain largely unaddressed. We have developed a collection of mechanisms based on redundancy, Byzantine fault tolerance, and adaptive middleware that help distributed, object-based applications tolerate corruption-inducing attacks. In this paper, we present the ITUA architecture, which integrates these mechanisms in a framework for autoadaptive intrusion-tolerant systems, and we describe our experience in using the technology to defend a critical application that is part of a larger avionics system as an example. We also motivate the adaptive responses that are key to intrusion tolerance, and explain the use of the ITUA architecture to support them in an architectural framework.

Original languageEnglish (US)
Pages (from-to)1331-1354
Number of pages24
JournalSoftware - Practice and Experience
Volume36
Issue number11-12
DOIs
StatePublished - Sep 2006

Keywords

  • Adaptive defense
  • Adaptive middleware
  • Byzantine fault tolerance
  • Intrusion tolerance
  • Redundancy
  • Survivability architecture

ASJC Scopus subject areas

  • Software

Fingerprint Dive into the research topics of 'An architecture for adaptive intrusion-tolerant applications'. Together they form a unique fingerprint.

Cite this