Quantitative Analysis of Multi-Recovery-Based Intrusion Tolerance Model
- 17 May 2018
- journal article
- computer science
- Published by EDP Sciences in Wuhan University Journal of Natural Sciences
- Vol. 23 (3), 185-194
- https://doi.org/10.1007/s11859-018-1309-y
Abstract
Quantitative analysis has always been a difficult problem in security analysis of intrusion tolerance systems. An intrusion tolerance model based on multiple recovery mechanisms is introduced in this paper and how to quantify the security attributes of the model is proposed. A state transition model with recovery states more accurately describes the dynamic behavior of the system. Considering that recovery mechanisms have a great impact on the security performance of the system, we set up the cost models corresponding to different recovery mechanisms. We propose a feasible security measure based on mean cost to security failure in order to evaluate the system cost during the recovery phase. The experimental results confirmed the feasibility of the proposed methods.Keywords
This publication has 5 references indexed in Scilit:
- Quantitative approach to dynamic security of intrusion tolerant systemsJournal of Computer Applications, 2011
- Security Evaluation of an Intrusion Tolerant Web Service Architecture Using Stochastic Activity NetworksLecture Notes in Computer Science, 2009
- Resilient Intrusion Tolerance through Proactive and Reactive RecoveryPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2007
- Incorruptible Self-Cleansing Intrusion Tolerance and Its Application to DNS SecurityJournal of Networks, 2006
- A method for modeling and quantifying the security attributes of intrusion tolerant systemsPerformance Evaluation, 2004