On the Resilience of Intrusion-Tolerant Distributed Systems

Detalhes bibliográficos
Autor(a) principal: Neves, Nuno Ferreira
Data de Publicação: 2006
Outros Autores: Veríssimo, Paulo, Sousa, Paulo, Lopes, Antónia
Tipo de documento: Relatório
Idioma: por
Título da fonte: Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
Texto Completo: http://hdl.handle.net/10451/14075
Resumo: The paper starts by introducing a new dimension along which distributed systems resilience may be evaluated - exhaustion-safety. A node-exhaustion-safe intrusion-tolerant distributed system is a system that assuredly does not suffer more than the assumed number of node failures (e.g., crash, Byzantine). We show that it is not possible to build this kind of systems under the asynchronous model. This result follows from the fact that in an asynchronous environment one cannot guarantee that the system terminates its execution before the occurrence of more than the assumed number of faults. After introducing exhaustion-safety, the paper proposes a new paradigm - proactive resilience - to build intrusion-tolerant distributed systems. Proactive resilience is based on architectural hybridization and hybrid distributed system modeling. The Proactive Resilience Model (PRM) is presented and shown to be a way of building node-exhaustion-safe intrusion-tolerant systems. Finally, the paper describes the design of a secret sharing system built according to the PRM. A proof-of-concept prototype of this system is shown to be highly resilient under different attack scenarios.
id RCAP_f92e82c54c7ce1c2102a6039956dc3dd
oai_identifier_str oai:repositorio.ul.pt:10451/14075
network_acronym_str RCAP
network_name_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository_id_str 7160
spelling On the Resilience of Intrusion-Tolerant Distributed SystemsIntrusion ToleranceTiming AssumptionsProactive RecoveryWormholesSecret SharingThe paper starts by introducing a new dimension along which distributed systems resilience may be evaluated - exhaustion-safety. A node-exhaustion-safe intrusion-tolerant distributed system is a system that assuredly does not suffer more than the assumed number of node failures (e.g., crash, Byzantine). We show that it is not possible to build this kind of systems under the asynchronous model. This result follows from the fact that in an asynchronous environment one cannot guarantee that the system terminates its execution before the occurrence of more than the assumed number of faults. After introducing exhaustion-safety, the paper proposes a new paradigm - proactive resilience - to build intrusion-tolerant distributed systems. Proactive resilience is based on architectural hybridization and hybrid distributed system modeling. The Proactive Resilience Model (PRM) is presented and shown to be a way of building node-exhaustion-safe intrusion-tolerant systems. Finally, the paper describes the design of a secret sharing system built according to the PRM. A proof-of-concept prototype of this system is shown to be highly resilient under different attack scenarios.Department of Informatics, University of LisbonRepositório da Universidade de LisboaNeves, Nuno FerreiraVeríssimo, PauloSousa, PauloLopes, Antónia2009-02-10T13:11:51Z2006-092006-09-01T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/reportapplication/pdfhttp://hdl.handle.net/10451/14075porinfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2023-11-08T15:59:38Zoai:repositorio.ul.pt:10451/14075Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-19T21:35:56.417207Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse
dc.title.none.fl_str_mv On the Resilience of Intrusion-Tolerant Distributed Systems
title On the Resilience of Intrusion-Tolerant Distributed Systems
spellingShingle On the Resilience of Intrusion-Tolerant Distributed Systems
Neves, Nuno Ferreira
Intrusion Tolerance
Timing Assumptions
Proactive Recovery
Wormholes
Secret Sharing
title_short On the Resilience of Intrusion-Tolerant Distributed Systems
title_full On the Resilience of Intrusion-Tolerant Distributed Systems
title_fullStr On the Resilience of Intrusion-Tolerant Distributed Systems
title_full_unstemmed On the Resilience of Intrusion-Tolerant Distributed Systems
title_sort On the Resilience of Intrusion-Tolerant Distributed Systems
author Neves, Nuno Ferreira
author_facet Neves, Nuno Ferreira
Veríssimo, Paulo
Sousa, Paulo
Lopes, Antónia
author_role author
author2 Veríssimo, Paulo
Sousa, Paulo
Lopes, Antónia
author2_role author
author
author
dc.contributor.none.fl_str_mv Repositório da Universidade de Lisboa
dc.contributor.author.fl_str_mv Neves, Nuno Ferreira
Veríssimo, Paulo
Sousa, Paulo
Lopes, Antónia
dc.subject.por.fl_str_mv Intrusion Tolerance
Timing Assumptions
Proactive Recovery
Wormholes
Secret Sharing
topic Intrusion Tolerance
Timing Assumptions
Proactive Recovery
Wormholes
Secret Sharing
description The paper starts by introducing a new dimension along which distributed systems resilience may be evaluated - exhaustion-safety. A node-exhaustion-safe intrusion-tolerant distributed system is a system that assuredly does not suffer more than the assumed number of node failures (e.g., crash, Byzantine). We show that it is not possible to build this kind of systems under the asynchronous model. This result follows from the fact that in an asynchronous environment one cannot guarantee that the system terminates its execution before the occurrence of more than the assumed number of faults. After introducing exhaustion-safety, the paper proposes a new paradigm - proactive resilience - to build intrusion-tolerant distributed systems. Proactive resilience is based on architectural hybridization and hybrid distributed system modeling. The Proactive Resilience Model (PRM) is presented and shown to be a way of building node-exhaustion-safe intrusion-tolerant systems. Finally, the paper describes the design of a secret sharing system built according to the PRM. A proof-of-concept prototype of this system is shown to be highly resilient under different attack scenarios.
publishDate 2006
dc.date.none.fl_str_mv 2006-09
2006-09-01T00:00:00Z
2009-02-10T13:11:51Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/report
format report
status_str publishedVersion
dc.identifier.uri.fl_str_mv http://hdl.handle.net/10451/14075
url http://hdl.handle.net/10451/14075
dc.language.iso.fl_str_mv por
language por
dc.rights.driver.fl_str_mv info:eu-repo/semantics/openAccess
eu_rights_str_mv openAccess
dc.format.none.fl_str_mv application/pdf
dc.publisher.none.fl_str_mv Department of Informatics, University of Lisbon
publisher.none.fl_str_mv Department of Informatics, University of Lisbon
dc.source.none.fl_str_mv reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron:RCAAP
instname_str Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
instacron_str RCAAP
institution RCAAP
reponame_str Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
collection Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)
repository.name.fl_str_mv Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação
repository.mail.fl_str_mv
_version_ 1817550316577488896