Proactive resilience revisited: The delicate balance between resisting intrusions and remaining available

Paulo Sousa; Nuno Ferreira Neves; Paulo Veríssimo; William H. Sanders

doi:10.1109/SRDS.2006.37

Proactive resilience revisited: The delicate balance between resisting intrusions and remaining available

Paulo Sousa, Nuno Ferreira Neves, Paulo Veríssimo, William H. Sanders

Electrical and Computer Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

In a recent paper, we presented proactive resilience as a new approach to proactive recovery, based on architectural hybridization. We showed that, with appropriate assumptions about fault rate, proactive resilience makes it possible to build distributed intrusion-tolerant systems guaranteed not to suffer more than the assumed number of faults during their lifetime. In this paper, we explore the impact of these assumptions in asynchronous systems, and derive conditions that should be met by practical systems in order to guarantee long-lived, i.e., available, intrusion-tolerant operation. Our conclusions are based on analytical and simulation results as implemented in Möbius, and we use the same modeling environment to show that our approach offers higher resilience in comparison with other proactive intrusion-tolerant system models.

Original language	English (US)
Title of host publication	Proceedings - 25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006
Pages	71-80
Number of pages	10
DOIs	https://doi.org/10.1109/SRDS.2006.37
State	Published - 2006
Event	25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006 - Leeds, United Kingdom Duration: Oct 2 2006 → Oct 4 2006

Publication series

Name	Proceedings of the IEEE Symposium on Reliable Distributed Systems
ISSN (Print)	1060-9857

Other

Other	25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006
Country/Territory	United Kingdom
City	Leeds
Period	10/2/06 → 10/4/06

ASJC Scopus subject areas

Theoretical Computer Science
Software
Hardware and Architecture
Computer Networks and Communications

Online availability

10.1109/SRDS.2006.37

Library availability

Discover UIUC Full Text

Cite this

Sousa, P., Neves, N. F., Veríssimo, P., & Sanders, W. H. (2006). Proactive resilience revisited: The delicate balance between resisting intrusions and remaining available. In Proceedings - 25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006 (pp. 71-80). Article 4032470 (Proceedings of the IEEE Symposium on Reliable Distributed Systems). https://doi.org/10.1109/SRDS.2006.37

Proactive resilience revisited: The delicate balance between resisting intrusions and remaining available. / Sousa, Paulo; Neves, Nuno Ferreira; Veríssimo, Paulo et al.
Proceedings - 25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006. 2006. p. 71-80 4032470 (Proceedings of the IEEE Symposium on Reliable Distributed Systems).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Sousa, P, Neves, NF, Veríssimo, P & Sanders, WH 2006, Proactive resilience revisited: The delicate balance between resisting intrusions and remaining available. in Proceedings - 25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006., 4032470, Proceedings of the IEEE Symposium on Reliable Distributed Systems, pp. 71-80, 25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006, Leeds, United Kingdom, 10/2/06. https://doi.org/10.1109/SRDS.2006.37

@inproceedings{7b042510461746b2950b8304872ed901,

title = "Proactive resilience revisited: The delicate balance between resisting intrusions and remaining available",

abstract = "In a recent paper, we presented proactive resilience as a new approach to proactive recovery, based on architectural hybridization. We showed that, with appropriate assumptions about fault rate, proactive resilience makes it possible to build distributed intrusion-tolerant systems guaranteed not to suffer more than the assumed number of faults during their lifetime. In this paper, we explore the impact of these assumptions in asynchronous systems, and derive conditions that should be met by practical systems in order to guarantee long-lived, i.e., available, intrusion-tolerant operation. Our conclusions are based on analytical and simulation results as implemented in M{\"o}bius, and we use the same modeling environment to show that our approach offers higher resilience in comparison with other proactive intrusion-tolerant system models.",

author = "Paulo Sousa and Neves, {Nuno Ferreira} and Paulo Ver{\'i}ssimo and Sanders, {William H.}",

year = "2006",

doi = "10.1109/SRDS.2006.37",

language = "English (US)",

isbn = "0769526772",

series = "Proceedings of the IEEE Symposium on Reliable Distributed Systems",

pages = "71--80",

booktitle = "Proceedings - 25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006",

note = "25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006 ; Conference date: 02-10-2006 Through 04-10-2006",

}

TY - GEN

T1 - Proactive resilience revisited

T2 - 25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006

AU - Sousa, Paulo

AU - Neves, Nuno Ferreira

AU - Veríssimo, Paulo

AU - Sanders, William H.

PY - 2006

Y1 - 2006

N2 - In a recent paper, we presented proactive resilience as a new approach to proactive recovery, based on architectural hybridization. We showed that, with appropriate assumptions about fault rate, proactive resilience makes it possible to build distributed intrusion-tolerant systems guaranteed not to suffer more than the assumed number of faults during their lifetime. In this paper, we explore the impact of these assumptions in asynchronous systems, and derive conditions that should be met by practical systems in order to guarantee long-lived, i.e., available, intrusion-tolerant operation. Our conclusions are based on analytical and simulation results as implemented in Möbius, and we use the same modeling environment to show that our approach offers higher resilience in comparison with other proactive intrusion-tolerant system models.

AB - In a recent paper, we presented proactive resilience as a new approach to proactive recovery, based on architectural hybridization. We showed that, with appropriate assumptions about fault rate, proactive resilience makes it possible to build distributed intrusion-tolerant systems guaranteed not to suffer more than the assumed number of faults during their lifetime. In this paper, we explore the impact of these assumptions in asynchronous systems, and derive conditions that should be met by practical systems in order to guarantee long-lived, i.e., available, intrusion-tolerant operation. Our conclusions are based on analytical and simulation results as implemented in Möbius, and we use the same modeling environment to show that our approach offers higher resilience in comparison with other proactive intrusion-tolerant system models.

UR - http://www.scopus.com/inward/record.url?scp=38949167734&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=38949167734&partnerID=8YFLogxK

U2 - 10.1109/SRDS.2006.37

DO - 10.1109/SRDS.2006.37

M3 - Conference contribution

AN - SCOPUS:38949167734

SN - 0769526772

SN - 9780769526775

T3 - Proceedings of the IEEE Symposium on Reliable Distributed Systems

SP - 71

EP - 80

BT - Proceedings - 25th IEEE Symposium on Reliable Distributed Systems, SRDS 2006

Y2 - 2 October 2006 through 4 October 2006

ER -

Proactive resilience revisited: The delicate balance between resisting intrusions and remaining available

Abstract

Publication series

Other

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this