Internet Archive Scholar

Designing and Implementing a Diversity Policy for Intrusion-Tolerant Systems

Seondong HEO, Soojin LEE, Bumsoon JANG, Hyunsoo YOON
2017 IEICE transactions on information and systems  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (742.1 kB)
https://web.archive.org/web/20181101105132/https://www.jstage.jst.go.jp/article/transinf/E100.D/1/E100.D_2015EDP7478/_pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2018; you can also visit the original URL. The file type is application/pdf.

Research on intrusion-tolerant systems (ITSs) is being conducted to protect critical systems which provide useful information services. To provide services reliably, these critical systems must not have even a single point of failure (SPOF). Therefore, most ITSs employ redundant components to eliminate the SPOF problem and improve system reliability. However, systems that include identical components have common vulnerabilities that can be exploited to attack the servers. Attackers prefer to
more » ... loit these common vulnerabilities rather than general vulnerabilities because the former might provide an opportunity to compromise several servers. In this study, we analyze software vulnerability data from the National Vulnerability Database (NVD). Based on the analysis results, we present a scheme that finds software combinations that minimize the risk of common vulnerabilities. We implement this scheme with CSIM20, and simulation results prove that the proposed scheme is appropriate for a recovery-based intrusion tolerant architecture.
doi:10.1587/transinf.2015edp7478 fatcat:lbbu4ixgjndtlntqqyaz7dozs4
Citation

Seondong HEO, Soojin LEE, Bumsoon JANG, Hyunsoo YOON. "Designing and Implementing a Diversity Policy for Intrusion-Tolerant Systems." IEICE transactions on information and systems E100.D.1 (2017) 118-129