Quantitative Analysis of Multi-Recovery-Based Intrusion Tolerance Model

17 May 2018

journal article
computer science
Published by EDP Sciences in Wuhan University Journal of Natural Sciences

Vol. 23 (3), 185-194
https://doi.org/10.1007/s11859-018-1309-y

Abstract

Quantitative analysis has always been a difficult problem in security analysis of intrusion tolerance systems. An intrusion tolerance model based on multiple recovery mechanisms is introduced in this paper and how to quantify the security attributes of the model is proposed. A state transition model with recovery states more accurately describes the dynamic behavior of the system. Considering that recovery mechanisms have a great impact on the security performance of the system, we set up the cost models corresponding to different recovery mechanisms. We propose a feasible security measure based on mean cost to security failure in order to evaluate the system cost during the recovery phase. The experimental results confirmed the feasibility of the proposed methods.

Keywords

This publication has 5 references indexed in Scilit:

Quantitative approach to dynamic security of intrusion tolerant systems
Journal of Computer Applications, 2011
Security Evaluation of an Intrusion Tolerant Web Service Architecture Using Stochastic Activity Networks
Lecture Notes in Computer Science, 2009
Resilient Intrusion Tolerance through Proactive and Reactive Recovery
Published by Institute of Electrical and Electronics Engineers (IEEE) ,2007
Incorruptible Self-Cleansing Intrusion Tolerance and Its Application to DNS Security
Journal of Networks, 2006
A method for modeling and quantifying the security attributes of intrusion tolerant systems
Performance Evaluation, 2004

Cited by 1 article