TY - GEN
T1 - A fault tolerance approach to survivability
AU - Ammann, P.
AU - Jajodia, S.
AU - Liu, Peng
N1 - Publisher Copyright:
© 1998 IEEE.
PY - 1998
Y1 - 1998
N2 - Attacks on computer systems have received a great deal of press attention; however, most of the focus has been on how an attacker can disrupt an organization's operations. Although attack prevention is clearly preferred, preventive measures do fail, and some attacks inevitably succeed in compromising some or all of particular systems, i.e., databases. We propose research into a fault-tolerance approach that addresses all phases of survivability: attack detection, damage confinement, damage assessment and repair, and attack avoidance. We focus attention on continued service and recovery issue. A promising area of research for continued service addresses relaxed notions of consistency. Expanding on the notion of self stabilization, the idea is to formalize the degree of damage under which useful services is still possible. A complementary research area for recovery is the engineering of suitable mechanisms into existing systems. We explain the underlying models for these research areas and illustrate them with examples from the database domain. We argue that these models form a natural part of a fault tolerance approach and propose research into adapting these models for larger systems.
AB - Attacks on computer systems have received a great deal of press attention; however, most of the focus has been on how an attacker can disrupt an organization's operations. Although attack prevention is clearly preferred, preventive measures do fail, and some attacks inevitably succeed in compromising some or all of particular systems, i.e., databases. We propose research into a fault-tolerance approach that addresses all phases of survivability: attack detection, damage confinement, damage assessment and repair, and attack avoidance. We focus attention on continued service and recovery issue. A promising area of research for continued service addresses relaxed notions of consistency. Expanding on the notion of self stabilization, the idea is to formalize the degree of damage under which useful services is still possible. A complementary research area for recovery is the engineering of suitable mechanisms into existing systems. We explain the underlying models for these research areas and illustrate them with examples from the database domain. We argue that these models form a natural part of a fault tolerance approach and propose research into adapting these models for larger systems.
UR - http://www.scopus.com/inward/record.url?scp=12344283299&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=12344283299&partnerID=8YFLogxK
U2 - 10.1109/CSDA.1998.798367
DO - 10.1109/CSDA.1998.798367
M3 - Conference contribution
AN - SCOPUS:12344283299
T3 - Proceedings - Computer Security, Dependability, and Assurance: From Needs to Solutions, CSDA 1998
SP - 204
EP - 211
BT - Proceedings - Computer Security, Dependability, and Assurance
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 1998 Conference on Computer Security, Dependability, and Assurance: From Needs to Solutions, CSDA 1998
Y2 - 11 November 1998 through 13 November 1998
ER -