Intrusion-tolerant architectures: Concepts and design

Paulo Esteves Veríssimo, Nuno Ferreira Neves, Miguel Pupo Correia

Research output: Chapter in Book/Report/Conference proceedingConference contribution

95 Scopus citations

Abstract

There is a significant body of research on distributed computing architectures, methodologies and algorithms, both in the fields of fault tolerance and security. Whilst they have taken separate paths until recently, the problems to be solved are of similar nature. In classical dependability, fault tolerance has been the workhorse of many solutions. Classical security-related work has on the other hand privileged, with few exceptions, intrusion prevention. Intrusion tolerance (IT) is a new approach that has slowly emerged during the past decade, and gained impressive momentum recently. Instead of trying to prevent every single intrusion, these are allowed, but tolerated: the system triggers mechanisms that prevent the intrusion from generating a system security failure. The paper describes the fundamental concepts behind IT, tracing their connection with classical fault tolerance and security. We discuss the main strategies and mechanisms for architecting IT systems, and report on recent advances on distributed IT system architectures. © Springer-Verlag 2003.
Original languageEnglish (US)
Title of host publicationLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
PublisherSpringer Verlag
Pages3-36
Number of pages34
ISBN (Print)3540407278
DOIs
StatePublished - Jan 1 2003
Externally publishedYes

Fingerprint

Dive into the research topics of 'Intrusion-tolerant architectures: Concepts and design'. Together they form a unique fingerprint.

Cite this