2003 Articles
A Holistic Approach to Service Survivability
We present SABER (Survivability Architecture: Block, Evade, React), a proposed survivability architecture that blocks, evades and reacts to a variety of attacks by using several security and survivability mechanisms in an automated and coordinated fashion. Contrary to the ad hoc manner in which contemporary survivable systems are built-using isolated, independent security mechanisms such as firewalls, intrusion detection systems and software sandboxes-SABER integrates several different technologies in an attempt to provide a unified framework for responding to the wide range of attacks malicious insiders and outsiders can launch. This coordinated multi-layer approach will be capable of defending against attacks targeted at various levels of the network stack, such as congestion-based DoS attacks, software-based DoS or code-injection attacks, and others. Our fundamental insight is that while multiple lines of defense are useful, most conventional, uncoordinated approaches fail to exploit the full range of available responses to incidents. By coordinating the response, the ability to survive successful security breaches increases substantially. We discuss the key components of SABER, how they will be integrated together, and how we can leverage on the promising results of the individual components to improve survivability in a variety of coordinated attack scenarios. SABER is currently in the prototyping stages, with several interesting open research topics.
Subjects
Files
- saber.pdf application/pdf 170 KB Download File
Also Published In
- Title
- Proceedings of the ACM Workshop on Survivable and Self-Regenerative Systems: in association with 10th ACM Conference on Computer and Communications Security, Fairfax, VA, USA, October 31, 2003
- Publisher
- ACM
- DOI
- https://doi.org/10.1145/1036921.1036923
More About This Work
- Academic Units
- Computer Science
- Published Here
- July 11, 2012