|
| This Article | ||
| ||
| Share | ||
| Bibliographic References | ||
| Add to: | ||
 Digg  Furl  Spurl  Blink  Simpy  Google  Del.icio.us  Y!MyWeb | ||
| Search | ||
| ||
Second International Conference on Autonomic Computing (ICAC'05)
An Intrusion-Tolerant and Self-Recoverable Network Service System Using A Security Enhanced Chip Multiprocessor
Seattle, Washington
June 13-June 16
ISBN: 0-7965-2276-9
| ASCII Text | x | ||
| Weidong Shi, Hsien-Hsin S. Lee, Guofei Gu, Laura Falk, Trevor N. Mudge, Mrinmoy Ghosh, "An Intrusion-Tolerant and Self-Recoverable Network Service System Using A Security Enhanced Chip Multiprocessor," Autonomic Computing, International Conference on, pp. 263-273, Second International Conference on Autonomic Computing (ICAC'05), 2005. | |||
| BibTex | x | ||
| @article{ 10.1109/ICAC.2005.8, author = {Weidong Shi and Hsien-Hsin S. Lee and Guofei Gu and Laura Falk and Trevor N. Mudge and Mrinmoy Ghosh}, title = {An Intrusion-Tolerant and Self-Recoverable Network Service System Using A Security Enhanced Chip Multiprocessor}, journal ={Autonomic Computing, International Conference on}, volume = {0}, year = {2005}, isbn = {0-7965-2276-9}, pages = {263-273}, doi = {http://doi.ieeecomputersociety.org/10.1109/ICAC.2005.8}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, } | |||
| RefWorks Procite/RefMan/Endnote | x | ||
| TY - CONF JO - Autonomic Computing, International Conference on TI - An Intrusion-Tolerant and Self-Recoverable Network Service System Using A Security Enhanced Chip Multiprocessor SN - 0-7965-2276-9 SP263 EP273 A1 - Weidong Shi, A1 - Hsien-Hsin S. Lee, A1 - Guofei Gu, A1 - Laura Falk, A1 - Trevor N. Mudge, A1 - Mrinmoy Ghosh, PY - 2005 KW - Intrusion-tolerant computing KW - survivable service KW - chip multi processor KW - self-healing KW - rootkits KW - buffer overflow. VL - 0 JA - Autonomic Computing, International Conference on ER - | |||
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/ICAC.2005.8
This paper proposes a novel system design using a chip multiprocessor (CMP) to provide intrusion tolerance and self-recovery for server applications. Our platform provides three major advantages over previously proposed approaches, 1) security insulation from remote exploits and attacks; 2) close coupling between processor cores in a CMP to ensure immediate logging, fine-grained inspection and fast recovery; 3) concurrent and fine-grained inspection, logging and recovery techniques that are off of the critical path. We have designed a multi-point defense and recovery system to defeat remote exploits. We used a checkpoint based approach to recover server applications under attack. It takes a snapshot of the application?s context and memory state before it handles the next request. If the request turns out to be malicious, the system can discard the malicious request and rollback the application?s state to a known good one through checkpointing. We have also designed an rapid recovery system for kernel space rootkit attacks. Our intrusion survivable and self-recovery design provides reliable production services that System Administrators are seeking.
Index Terms:
Intrusion-tolerant computing, survivable service, chip multi processor, self-healing, rootkits, buffer overflow.
Citation:
Weidong Shi, Hsien-Hsin S. Lee, Guofei Gu, Laura Falk, Trevor N. Mudge, Mrinmoy Ghosh, "An Intrusion-Tolerant and Self-Recoverable Network Service System Using A Security Enhanced Chip Multiprocessor," icac, pp.263-273, Second International Conference on Autonomic Computing (ICAC'05), 2005
Usage of this product signifies your acceptance of the Terms of Use.