Redundancy–Based Intrusion Tolerance Approaches Moving from Classical Fault Tolerance Methods

IF 1.6 4区计算机科学 Q3 AUTOMATION & CONTROL SYSTEMS

International Journal of Applied Mathematics and Computer Science Pub Date : 2022-12-01 DOI:10.34768/amcs-2022-0048

F. Di Giandomenico, Giulio Masetti, S. Chiaradonna

{"title":"Redundancy–Based Intrusion Tolerance Approaches Moving from Classical Fault Tolerance Methods","authors":"F. Di Giandomenico, Giulio Masetti, S. Chiaradonna","doi":"10.34768/amcs-2022-0048","DOIUrl":null,"url":null,"abstract":"Abstract Borrowing from well known fault tolerant approaches based on redundancy to mask the effect of faults, redundancy-based intrusion tolerance schemes are proposed in this paper, where redundancy of ICT components is exploited as a first defense line against a subset of compromised components within the redundant set, due to cyberattacks. Features to enhance defense and tolerance capabilities are first discussed, covering diversity-based redundancy, confusion techniques, protection mechanisms, locality policies and rejuvenation phases. Then, a set of intrusion tolerance variations of classical fault tolerant schemes (including N Version Programming and Recovery Block, as well as a few hybrid approaches) is proposed, by enriching each original scheme with one or more of the previously introduced defense mechanisms. As a practical support to the system designer in making an appropriate choice among the available solutions, for each developed scheme a schematic summary is provided, in terms of resources and defense facilities needed to tolerate f value failures and k omission failures, as well as observations regarding time requirements. To provide an example of more detailed analysis, useful to set up an appropriate intrusion tolerance configuration, a trade-off study between cost and additional redundancy employed for confusion purposes is also carried out.","PeriodicalId":50339,"journal":{"name":"International Journal of Applied Mathematics and Computer Science","volume":"914 1","pages":"701 - 719"},"PeriodicalIF":1.6000,"publicationDate":"2022-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Journal of Applied Mathematics and Computer Science","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.34768/amcs-2022-0048","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"AUTOMATION & CONTROL SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

Abstract Borrowing from well known fault tolerant approaches based on redundancy to mask the effect of faults, redundancy-based intrusion tolerance schemes are proposed in this paper, where redundancy of ICT components is exploited as a first defense line against a subset of compromised components within the redundant set, due to cyberattacks. Features to enhance defense and tolerance capabilities are first discussed, covering diversity-based redundancy, confusion techniques, protection mechanisms, locality policies and rejuvenation phases. Then, a set of intrusion tolerance variations of classical fault tolerant schemes (including N Version Programming and Recovery Block, as well as a few hybrid approaches) is proposed, by enriching each original scheme with one or more of the previously introduced defense mechanisms. As a practical support to the system designer in making an appropriate choice among the available solutions, for each developed scheme a schematic summary is provided, in terms of resources and defense facilities needed to tolerate f value failures and k omission failures, as well as observations regarding time requirements. To provide an example of more detailed analysis, useful to set up an appropriate intrusion tolerance configuration, a trade-off study between cost and additional redundancy employed for confusion purposes is also carried out.

查看原文本刊更多论文

从经典容错方法发展而来的基于冗余的入侵容忍方法

摘要借鉴基于冗余的容错方法来掩盖故障的影响，本文提出了基于冗余的入侵容错方案，其中利用ICT组件的冗余作为抵御冗余集中由于网络攻击而受损的组件子集的第一道防线。首先讨论了增强防御和容忍能力的特征，包括基于多样性的冗余、混淆技术、保护机制、局部策略和恢复阶段。然后，提出了一组经典容错方案(包括N版本编程和恢复块，以及一些混合方法)的入侵容错变体，通过在每个原始方案中添加一种或多种先前引入的防御机制。作为对系统设计人员在可用的解决方案中做出适当选择的实际支持，对于每个已开发的方案，提供了一个原理图摘要，其中包括容忍值故障和遗漏故障所需的资源和防御设施，以及关于时间要求的观察。为了提供一个更详细的分析示例(有助于设置适当的入侵容忍配置)，本文还进行了成本和用于混淆目的的额外冗余之间的权衡研究。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

International Journal of Applied Mathematics and Computer Science 工程技术-计算机：人工智能

CiteScore

4.10

自引率

21.10%

发文量

审稿时长

4.2 months

期刊介绍： The International Journal of Applied Mathematics and Computer Science is a quarterly published in Poland since 1991 by the University of Zielona Góra in partnership with De Gruyter Poland (Sciendo) and Lubuskie Scientific Society, under the auspices of the Committee on Automatic Control and Robotics of the Polish Academy of Sciences. The journal strives to meet the demand for the presentation of interdisciplinary research in various fields related to control theory, applied mathematics, scientific computing and computer science. In particular, it publishes high quality original research results in the following areas: -modern control theory and practice- artificial intelligence methods and their applications- applied mathematics and mathematical optimisation techniques- mathematical methods in engineering, computer science, and biology.