Engineering a distributed intrusion tolerant database system using COTS components

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

In this paper, we present the design and implementation of ITDB, a self-healing or intrusion-tolerant database prototype system. While traditional secure database systems rely on preventive controls and are very limited in surviving malicious attacks, ITDB can detect intrusions, isolate attacks, contain, assess, and repair the damage caused by intrusions in a timely manner such that sustained, self-stabilized levels of data integrity and availability can be provided to applications in face of attacks. ITDB is implemented on top of a COTS DBMS. Preliminary testing measurements of ITDB suggest that when the accuracy of intrusion detection is satisfactory, ITDB can effectively locate and repair the damage on-the-fly with reasonable (database) performance penalty.

Original languageEnglish (US)
Title of host publicationProceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003
PublisherInstitute of Electrical and Electronics Engineers Inc.
Pages284-289
Number of pages6
ISBN (Electronic)0769518974, 9780769518978
DOIs
StatePublished - Jan 1 2003
EventDARPA Information Survivability Conference and Exposition, DISCEX 2003 - Washington, United States
Duration: Apr 22 2003Apr 24 2003

Publication series

NameProceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003
Volume2

Other

OtherDARPA Information Survivability Conference and Exposition, DISCEX 2003
CountryUnited States
CityWashington
Period4/22/034/24/03

Fingerprint

Repair
Intrusion detection
Availability
Testing

All Science Journal Classification (ASJC) codes

  • Computer Networks and Communications
  • Information Systems
  • Control and Systems Engineering
  • Safety, Risk, Reliability and Quality

Cite this

Liu, P. (2003). Engineering a distributed intrusion tolerant database system using COTS components. In Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003 (pp. 284-289). [1194979] (Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003; Vol. 2). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/DISCEX.2003.1194979
Liu, Peng. / Engineering a distributed intrusion tolerant database system using COTS components. Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003. Institute of Electrical and Electronics Engineers Inc., 2003. pp. 284-289 (Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003).
@inproceedings{a7a3d0b1f7e54ee0b625846cac9fee02,
title = "Engineering a distributed intrusion tolerant database system using COTS components",
abstract = "In this paper, we present the design and implementation of ITDB, a self-healing or intrusion-tolerant database prototype system. While traditional secure database systems rely on preventive controls and are very limited in surviving malicious attacks, ITDB can detect intrusions, isolate attacks, contain, assess, and repair the damage caused by intrusions in a timely manner such that sustained, self-stabilized levels of data integrity and availability can be provided to applications in face of attacks. ITDB is implemented on top of a COTS DBMS. Preliminary testing measurements of ITDB suggest that when the accuracy of intrusion detection is satisfactory, ITDB can effectively locate and repair the damage on-the-fly with reasonable (database) performance penalty.",
author = "Peng Liu",
year = "2003",
month = "1",
day = "1",
doi = "10.1109/DISCEX.2003.1194979",
language = "English (US)",
series = "Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003",
publisher = "Institute of Electrical and Electronics Engineers Inc.",
pages = "284--289",
booktitle = "Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003",
address = "United States",

}

Liu, P 2003, Engineering a distributed intrusion tolerant database system using COTS components. in Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003., 1194979, Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003, vol. 2, Institute of Electrical and Electronics Engineers Inc., pp. 284-289, DARPA Information Survivability Conference and Exposition, DISCEX 2003, Washington, United States, 4/22/03. https://doi.org/10.1109/DISCEX.2003.1194979

Engineering a distributed intrusion tolerant database system using COTS components. / Liu, Peng.

Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003. Institute of Electrical and Electronics Engineers Inc., 2003. p. 284-289 1194979 (Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003; Vol. 2).

Research output: Chapter in Book/Report/Conference proceedingConference contribution

TY - GEN

T1 - Engineering a distributed intrusion tolerant database system using COTS components

AU - Liu, Peng

PY - 2003/1/1

Y1 - 2003/1/1

N2 - In this paper, we present the design and implementation of ITDB, a self-healing or intrusion-tolerant database prototype system. While traditional secure database systems rely on preventive controls and are very limited in surviving malicious attacks, ITDB can detect intrusions, isolate attacks, contain, assess, and repair the damage caused by intrusions in a timely manner such that sustained, self-stabilized levels of data integrity and availability can be provided to applications in face of attacks. ITDB is implemented on top of a COTS DBMS. Preliminary testing measurements of ITDB suggest that when the accuracy of intrusion detection is satisfactory, ITDB can effectively locate and repair the damage on-the-fly with reasonable (database) performance penalty.

AB - In this paper, we present the design and implementation of ITDB, a self-healing or intrusion-tolerant database prototype system. While traditional secure database systems rely on preventive controls and are very limited in surviving malicious attacks, ITDB can detect intrusions, isolate attacks, contain, assess, and repair the damage caused by intrusions in a timely manner such that sustained, self-stabilized levels of data integrity and availability can be provided to applications in face of attacks. ITDB is implemented on top of a COTS DBMS. Preliminary testing measurements of ITDB suggest that when the accuracy of intrusion detection is satisfactory, ITDB can effectively locate and repair the damage on-the-fly with reasonable (database) performance penalty.

UR - http://www.scopus.com/inward/record.url?scp=84942430123&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84942430123&partnerID=8YFLogxK

U2 - 10.1109/DISCEX.2003.1194979

DO - 10.1109/DISCEX.2003.1194979

M3 - Conference contribution

T3 - Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003

SP - 284

EP - 289

BT - Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003

PB - Institute of Electrical and Electronics Engineers Inc.

ER -

Liu P. Engineering a distributed intrusion tolerant database system using COTS components. In Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003. Institute of Electrical and Electronics Engineers Inc. 2003. p. 284-289. 1194979. (Proceedings - DARPA Information Survivability Conference and Exposition, DISCEX 2003). https://doi.org/10.1109/DISCEX.2003.1194979