Title :
Availability Analysis of an Intrusion Tolerant Distributed Server System With Preventive Maintenance
Author :
Uemura, Toshikazu ; Dohi, Tadashi ; Kaio, Naoto
Author_Institution :
Dept. of Inf. Eng., Hiroshima Univ., Higashi-Hiroshima, Japan
fDate :
3/1/2010 12:00:00 AM
Abstract :
We consider availability models of an intrusion tolerant system, and investigate quantitative effects of preventive maintenance based on security patch releases. The stochastic behavior of the system is analyzed through an embedded Markov chain approach. More specifically, two semi-Markov models are formulated in continuous-time, and discrete-time scales. We derive the optimal preventive patch management times maximizing the steady-state system availability in respective models, and evaluate both the system availability, and the mean time to security failure. Numerical examples are presented for illustrating the optimal preventive maintenance policies, and performing sensitivity analysis of model parameters.
Keywords :
Markov processes; distributed algorithms; preventive maintenance; security of data; availability analysis; continuous-time scale; discrete-time scale; distributed server system; embedded Markov chain; intrusion tolerant system; preventive maintenance; security patch releases; semiMarkov models; Availability; Computer crime; Degradation; Hazards; Internet; Intrusion detection; Preventive maintenance; Security; Steady-state; Stochastic systems; Embedded Markov chain approach; intrusion tolerant system; mean time to security failure; patch management; semi-Markov processes;
Journal_Title :
Reliability, IEEE Transactions on
DOI :
10.1109/TR.2010.2042101
