A Holistic Approach to Service Survivability

Angelos D. Keromytis; Janak J. Parekh; Philip N. Gross; Gail E. Kaiser; Vishal Misra; Jason Nieh; Daniel Stuart Rubenstein; Salvatore Stolfo

A Holistic Approach to Service Survivability
Keromytis, Angelos D.
Parekh, Janak J.
Gross, Philip N.
Kaiser, Gail E.
Misra, Vishal
Nieh, Jason
Rubenstein, Daniel Stuart
Stolfo, Salvatore
Computer Science
Persistent URL:
Book/Journal Title:
Proceedings of the ACM Workshop on Survivable and Self-Regenerative Systems: in association with 10th ACM Conference on Computer and Communications Security, Fairfax, VA, USA, October 31, 2003
Book Author:
Liu, Peng
Pal, Partha
Publisher Location:
New York
We present SABER (Survivability Architecture: Block, Evade, React), a proposed survivability architecture that blocks, evades and reacts to a variety of attacks by using several security and survivability mechanisms in an automated and coordinated fashion. Contrary to the ad hoc manner in which contemporary survivable systems are built-using isolated, independent security mechanisms such as firewalls, intrusion detection systems and software sandboxes-SABER integrates several different technologies in an attempt to provide a unified framework for responding to the wide range of attacks malicious insiders and outsiders can launch. This coordinated multi-layer approach will be capable of defending against attacks targeted at various levels of the network stack, such as congestion-based DoS attacks, software-based DoS or code-injection attacks, and others. Our fundamental insight is that while multiple lines of defense are useful, most conventional, uncoordinated approaches fail to exploit the full range of available responses to incidents. By coordinating the response, the ability to survive successful security breaches increases substantially. We discuss the key components of SABER, how they will be integrated together, and how we can leverage on the promising results of the individual components to improve survivability in a variety of coordinated attack scenarios. SABER is currently in the prototyping stages, with several interesting open research topics.
Computer science
Publisher DOI:
Item views
text | xml
Suggested Citation:
Angelos D. Keromytis, Janak J. Parekh, Philip N. Gross, Gail E. Kaiser, Vishal Misra, Jason Nieh, Daniel Stuart Rubenstein, Salvatore Stolfo, , A Holistic Approach to Service Survivability, Columbia University Academic Commons, .

Columbia University Libraries | Policies | FAQ