Title: Evaluating the survivability of Intrusion Tolerant Database systems and the impact of intrusion detection deficiencies

Authors: Hai Wang, Peng Liu, Lunquan Li

Addresses: College of Information Sciences and Technology, Pennsylvania State University, University Park, PA 16802, USA. ' College of Information Sciences and Technology, Pennsylvania State University, University Park, PA 16802, USA. ' College of Information Sciences and Technology, Pennsylvania State University, University Park, PA 16802, USA

Abstract: The immaturity of current intrusion detection techniques limits traditional security mechanisms in surviving malicious attacks. Intrusion tolerance approaches have emerged to overcome these limitations. However, to what extent an intrusion tolerant system can mitigate detection deficiencies is still unknown. In this paper, we focus on quantifying the capability of a resilient database system surviving intrusions. An Intrusion Tolerant DataBase system (ITDB) is studied as an example. Our experimental results indicate that ITDB can maintain the desired level of data integrity and availability without being seriously affected by various intrusion detection deficiencies. The impact of intrusion tolerance operations on performance is also evaluated.

Keywords: database security; survivability; intrusion tolerance; transaction recovery; survivability assessment; information security; computer security; intrusion tolerant database; ITDB; intrusion detection; systems assurance; data integrity; data availability; performance evaluation.

DOI: 10.1504/IJICS.2007.013958

International Journal of Information and Computer Security, 2007 Vol.1 No.3, pp.315 - 340

Published online: 05 Jun 2007 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article