Title :
Secure, Resilient Computing Clusters: Self-Cleansing Intrusion Tolerance with Hardware Enforced Security (SCIT/HES)
Author :
Arsenault, David ; Sood, Arun ; Huang, Yih
Author_Institution :
Dept. of Comput. Sci., George Mason Univ., Fairfax, VA
Abstract :
The formidable difficulty in securing systems stems in large part from the increasing complexity of the systems we build but also the degree to which we now depend on information systems. Complex systems cannot be fully verified under all possible conditions. Self cleansing intrusion tolerance (SCIT) servers go through periodic cleaning. SCIT can be used to create secure and robust cluster of servers without the impossible requirement of having perfect security on each server in the cluster. In this paper, we identify six SCIT security primitives that must be satisfied. We present a SCIT hardware enhanced (SCIT/HES) implementation that guarantees the incorruptibility of SCIT operations
Keywords :
fault tolerance; network servers; security of data; workstation clusters; hardware enforced security; information systems; periodic cleaning; secure resilient computing clusters; self cleansing intrusion tolerance servers; self-cleansing intrusion tolerance; server cluster; Cleaning; Computer science; Computer security; Data security; Hardware; Information security; Information systems; National security; Network servers; Robustness;
Conference_Titel :
Availability, Reliability and Security, 2007. ARES 2007. The Second International Conference on
Conference_Location :
Vienna
Print_ISBN :
0-7695-2775-2
DOI :
10.1109/ARES.2007.134
