TY - JOUR
T1 - The design and implementation of a self-healing database system
AU - Liu, Peng
AU - Jing, Jiwu
AU - Luenam, Pramote
AU - Wang, Ying
AU - Lunquan, L. I.
AU - Ingsriswang, Supawadee
N1 - Funding Information:
This work is supported by DARPA (OASIS) and Air Force Research Laboratory, Air Force Material Command, USAF, under agreement number F30602-00-2-0575, by DARPA and AFRL, AFMC, USAF, under award number F20602-02-1-0216, and by NSF CCR-TC-0233324.
PY - 2004
Y1 - 2004
N2 - In this paper, we present the design and implementation of ITDB, a self-healing or intrusion-tolerant database prototype system. While traditional secure database systems rely on preventive controls and are very limited in surviving malicious attacks, ITDB can detect intrusions, isolate attacks, contain, assess, and repair the damage caused by intrusions in a timely manner such that sustained, self-stabilized levels of data integrity and availahiliry can be provided to applications in the face of attacks. ITDB is implemented on top of a COTS DBMS. We have evaluated the cost-effectiveness of ITDB using several micro-benchmarks. Preliminary testing measurements suggest that when the accuracy of intrusion detection is satisfactory. ITDB can effectively locate and repair the damage on-the-fly with reasonable (database) performance penalty.
AB - In this paper, we present the design and implementation of ITDB, a self-healing or intrusion-tolerant database prototype system. While traditional secure database systems rely on preventive controls and are very limited in surviving malicious attacks, ITDB can detect intrusions, isolate attacks, contain, assess, and repair the damage caused by intrusions in a timely manner such that sustained, self-stabilized levels of data integrity and availahiliry can be provided to applications in the face of attacks. ITDB is implemented on top of a COTS DBMS. We have evaluated the cost-effectiveness of ITDB using several micro-benchmarks. Preliminary testing measurements suggest that when the accuracy of intrusion detection is satisfactory. ITDB can effectively locate and repair the damage on-the-fly with reasonable (database) performance penalty.
UR - http://www.scopus.com/inward/record.url?scp=18744382195&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=18744382195&partnerID=8YFLogxK
U2 - 10.1023/B:JIIS.0000047394.02444.8d
DO - 10.1023/B:JIIS.0000047394.02444.8d
M3 - Article
AN - SCOPUS:18744382195
VL - 23
SP - 247
EP - 269
JO - Journal of Intelligent Information Systems
JF - Journal of Intelligent Information Systems
SN - 0925-9902
IS - 3
ER -