Title :
The Design of a Robust Intrusion Tolerance System through Advanced Adaptive Cluster Transformation and Vulnerability-Based VM Selection
Author :
Jungmin Lim ; Seokjoo Doo ; Hyunsoo Yoon
Author_Institution :
Dept. of Comput. Sci., KAIST, Daejeon, South Korea
Abstract :
In this paper, we suggested novel schemes which use advanced adaptive cluster transformation and VM selection policy for intrusion tolerant systems (ITSs). The cluster size is transformed adaptively in order to maintain a certain level of services by using the adaptive cluster expansion scheme. Also, all the servers in clusters can be substituted in case serious threat such as massive packets incoming is expected by using the adaptive cluster substitution method. If there exists reliable historical data, more fast transformation is possible. In addition, the less-vulnerable virtual machines (VMs) are chosen using evaluation policies to reduce data leakage occured from system´s vulnerabilities. Simulation results done with CSIM 20 prove that the suggested schemes improve intrusion tolerance efficiently compared to other conventional methods.
Keywords :
command and control systems; information systems; security of data; virtual machines; CSIM 20; ITS; adaptive cluster expansion scheme; adaptive cluster substitution method; advanced adaptive cluster transformation; case serious threat; command-and-control systems; data leakage reduction; evaluation policies; information systems; less-vulnerable virtual machines; robust intrusion tolerance system; system vulnerabilities; vulnerability-based VM selection; Adaptation models; Adaptive systems; Clustering algorithms; Computer crime; Delays; Servers; Time factors; Intrusion tolerant system; VM selection; adaptive cluster transformation;
Conference_Titel :
Military Communications Conference, MILCOM 2013 - 2013 IEEE
Conference_Location :
San Diego, CA
DOI :
10.1109/MILCOM.2013.241
