可生存性的容错方法

Proceedings Computer Security, Dependability, and Assurance: From Needs to Solutions (Cat. No.98EX358) Pub Date : 1998-07-09 DOI:10.1109/CSDA.1998.798367

P. Ammann, S. Jajodia, Peng Liu

{"title":"可生存性的容错方法","authors":"P. Ammann, S. Jajodia, Peng Liu","doi":"10.1109/CSDA.1998.798367","DOIUrl":null,"url":null,"abstract":"Attacks on computer systems have received a great deal of press attention; however, most of the focus has been on how an attacker can disrupt an organization's operations. Although attack prevention is clearly preferred, preventive measures do fail, and some attacks inevitably succeed in compromising some or all of particular systems, i.e., databases. We propose research into a fault-tolerance approach that addresses all phases of survivability: attack detection, damage confinement, damage assessment and repair, and attack avoidance. We focus attention on continued service and recovery issue. A promising area of research for continued service addresses relaxed notions of consistency. Expanding on the notion of self stabilization, the idea is to formalize the degree of damage under which useful services is still possible. A complementary research area for recovery is the engineering of suitable mechanisms into existing systems. We explain the underlying models for these research areas and illustrate them with examples from the database domain. We argue that these models form a natural part of a fault tolerance approach and propose research into adapting these models for larger systems.","PeriodicalId":171437,"journal":{"name":"Proceedings Computer Security, Dependability, and Assurance: From Needs to Solutions (Cat. No.98EX358)","volume":"43 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"1998-07-09","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"A fault tolerance approach to survivability\",\"authors\":\"P. Ammann, S. Jajodia, Peng Liu\",\"doi\":\"10.1109/CSDA.1998.798367\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Attacks on computer systems have received a great deal of press attention; however, most of the focus has been on how an attacker can disrupt an organization's operations. Although attack prevention is clearly preferred, preventive measures do fail, and some attacks inevitably succeed in compromising some or all of particular systems, i.e., databases. We propose research into a fault-tolerance approach that addresses all phases of survivability: attack detection, damage confinement, damage assessment and repair, and attack avoidance. We focus attention on continued service and recovery issue. A promising area of research for continued service addresses relaxed notions of consistency. Expanding on the notion of self stabilization, the idea is to formalize the degree of damage under which useful services is still possible. A complementary research area for recovery is the engineering of suitable mechanisms into existing systems. We explain the underlying models for these research areas and illustrate them with examples from the database domain. We argue that these models form a natural part of a fault tolerance approach and propose research into adapting these models for larger systems.\",\"PeriodicalId\":171437,\"journal\":{\"name\":\"Proceedings Computer Security, Dependability, and Assurance: From Needs to Solutions (Cat. No.98EX358)\",\"volume\":\"43 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"1998-07-09\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings Computer Security, Dependability, and Assurance: From Needs to Solutions (Cat. No.98EX358)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CSDA.1998.798367\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings Computer Security, Dependability, and Assurance: From Needs to Solutions (Cat. No.98EX358)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSDA.1998.798367","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

摘要

对计算机系统的攻击受到了媒体的极大关注;然而，大多数焦点都集中在攻击者如何破坏组织的运营上。虽然攻击预防显然是首选，但预防措施确实会失败，并且一些攻击不可避免地成功地危及某些或所有特定系统，即数据库。我们建议研究一种容错方法，以解决生存性的所有阶段:攻击检测、损害限制、损害评估和修复以及攻击避免。我们专注于持续服务和恢复问题。持续服务的一个有前景的研究领域是解决一致性的宽松概念。在自我稳定概念的基础上进行扩展，其想法是将仍然可能提供有用服务的损害程度正式化。恢复的一个补充研究领域是在现有系统中设计合适的机制。我们解释了这些研究领域的基础模型，并用数据库领域的例子来说明它们。我们认为这些模型是容错方法的自然组成部分，并建议研究如何将这些模型应用于更大的系统。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

A fault tolerance approach to survivability

Attacks on computer systems have received a great deal of press attention; however, most of the focus has been on how an attacker can disrupt an organization's operations. Although attack prevention is clearly preferred, preventive measures do fail, and some attacks inevitably succeed in compromising some or all of particular systems, i.e., databases. We propose research into a fault-tolerance approach that addresses all phases of survivability: attack detection, damage confinement, damage assessment and repair, and attack avoidance. We focus attention on continued service and recovery issue. A promising area of research for continued service addresses relaxed notions of consistency. Expanding on the notion of self stabilization, the idea is to formalize the degree of damage under which useful services is still possible. A complementary research area for recovery is the engineering of suitable mechanisms into existing systems. We explain the underlying models for these research areas and illustrate them with examples from the database domain. We argue that these models form a natural part of a fault tolerance approach and propose research into adapting these models for larger systems.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings Computer Security, Dependability, and Assurance: From Needs to Solutions (Cat. No.98EX358)

自引率

0.00%

发文量