Title :
Engineering a distributed intrusion tolerant database system using COTS components
Author_Institution :
Pennsylvania State Univ., University Park, PA, USA
Abstract :
In this paper, we present the design and implementation of ITDB, a self-healing or intrusion-tolerant database prototype system. While traditional secure database systems rely on preventive controls and are very limited in surviving malicious attacks, ITDB can detect intrusions, isolate attacks, contain, assess, and repair the damage caused by intrusions in a timely manner such that sustained, self-stabilized levels of data integrity and availability can be provided to applications in face of attacks. ITDB is implemented on top of a COTS DBMS. Preliminary testing measurements of ITDB suggest that when the accuracy of intrusion detection is satisfactory, ITDB can effectively locate and repair the damage on-the-fly with reasonable (database) performance penalty.
Keywords :
authorisation; data integrity; distributed databases; military computing; COTS components; DARPA; DBMS; ITDB; attack isolation; damage repair; data availability; data integrity; distributed database; intrusion tolerant database system; secure database; self-healing database; Computer crime; Data engineering; Data security; Database systems; Delay; Design engineering; Face detection; Intrusion detection; Prototypes; Transaction databases;
Conference_Titel :
DARPA Information Survivability Conference and Exposition, 2003. Proceedings
Print_ISBN :
0-7695-1897-4
DOI :
10.1109/DISCEX.2003.1194979
