Modeling and evaluating the survivability of an intrusion tolerant database system

Hai Wang, Peng Liu

Research output: Chapter in Book/Report/Conference proceedingConference contribution

23 Scopus citations

Abstract

The immaturity of current intrusion detection techniques limits the traditional security systems in surviving malicious attacks. Intrusion tolerance approaches have emerged to overcome these limitations. Before intrusion tolerance is accepted as an approach to security, there must be quantitative methods to measure its survivability. However, there are very few attempts to do quantitative, model-based evaluation of the survivability of intrusion tolerant systems, especially in database field. In this paper, we focus on modeling the behaviors of an intrusion tolerant database system in the presence of attacks. Quantitative measures are proposed to characterize the capability of a resilient database system surviving intrusions. An Intrusion Tolerant DataBase system (ITDB) is studied as an example. Our experimental results validate the models we proposed. Survivability evaluation is also conducted to study the impact of attack intensity and various system deficiencies on the survivability.

Original languageEnglish (US)
Title of host publicationComputer Security - ESORICS 2006 - 11th European Symposium on Research in Computer Security, Proceedings
PublisherSpringer Verlag
Pages207-224
Number of pages18
ISBN (Print)354044601X, 9783540446019
DOIs
StatePublished - Jan 1 2006
Event11th European Symposium on Research in Computer Security, ESORICS 2006 - Hamburg, Germany
Duration: Sep 18 2006Sep 20 2006

Publication series

NameLecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume4189 LNCS
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Other

Other11th European Symposium on Research in Computer Security, ESORICS 2006
CountryGermany
CityHamburg
Period9/18/069/20/06

All Science Journal Classification (ASJC) codes

  • Theoretical Computer Science
  • Computer Science(all)

Fingerprint Dive into the research topics of 'Modeling and evaluating the survivability of an intrusion tolerant database system'. Together they form a unique fingerprint.

Cite this