Title :
Intrusion-tolerant middleware: the road to automatic security
Author :
Verissimo, Paulo Esteves ; Neves, Nuno F. ; Cachin, Christian ; Poritz, Jonathan ; Powell, David ; Deswarte, Yves ; Stroud, Robert ; Welch, Ian
Author_Institution :
Lisbon Univ.
Abstract :
The pervasive interconnection of systems throughout the world has given computer services a significant socioeconomic value that both accidental faults and malicious activity can affect. The classical approach to security has mostly consisted of trying to prevent bad things from happening-by developing systems without vulnerabilities, for example, or by detecting attacks and intrusions and deploying ad hoc countermeasures before any part of the system is damaged. Building an intrusion-tolerant system to arrive at some notion of intrusion-tolerant middleware for application support presents multiple challenges. Surprising as it might seem, intrusion tolerance isn´t just another instantiation of accidental fault tolerance
Keywords :
middleware; security of data; socio-economic effects; software fault tolerance; ubiquitous computing; ad hoc countermeasures; automatic security; computer services; fault tolerance; intrusion-tolerant middleware; intrusion-tolerant system; pervasive interconnection of systems; socioeconomic value; Computer architecture; Computer hacking; Computer security; Fault tolerance; Laboratories; Middleware; Permission; Pervasive computing; Privacy; Protocols; fault tolerance; intrusion detection; intrusion tolerance;
Journal_Title :
Security & Privacy, IEEE
DOI :
10.1109/MSP.2006.95
