Featured Research

from universities, journals, and other organizations

New Intrusion Tolerance Software Fortifies Server Security

Date:
June 18, 2008
Source:
George Mason University
Summary:
In spite of increased focus and large investments in computer security, critical infrastructure systems remain vulnerable to attacks. The increasing sophistication and incessant morphing of cyber-attacks lend importance to the concept of intrusion tolerance: a system must fend off, or at least limit, the damage caused by unknown and/or undetected attacks.

In spite of increased focus and large investments in computer security, critical infrastructure systems remain vulnerable to attacks, says Arun Sood, professor of computer science at George Mason University. The increasing sophistication and incessant morphing of cyber-attacks lend importance to the concept of intrusion tolerance: a system must fend off, or at least limit, the damage caused by unknown and/or undetected attacks.

Related Articles


“The problem is that no matter how much investment is made in intrusion prevention and detection, intruders will still manage to break through and trespass on computer servers,” says Sood. “By looking at this problem from a different angle, we developed a way to contain the losses that may occur because of an intrusion.”

Sood, who is the director of the Laboratory of Interdisciplinary Computer Science at Mason, along with Yin Huang, senior research scientist in the Center for Secure Information Systems at Mason, created the Self Cleansing Intrusion Tolerance (SCIT) technology to provide an additional layer of defense to security architecture with firewalls and intrusion prevention and detection systems. While typical approaches to computer security are reactive and require prior knowledge of all attack modalities and software vulnerabilities, intrusion tolerance is a proactive approach to security.

In the SCIT approach, a server that has been online is assumed to have been compromised. SCIT servers are focused on limiting the losses that can occur because of an external intrusion, and achieve this goal by limiting the exposure time of the server to the Internet. Exposure time is defined as. the duration of time that a server is continuously connected to the Internet. Through the use of virtualization technology, duplicate servers are created and an online server is periodically cleansed and restored to a known clean state, regardless of whether an intrusion has been detected. These regular cleansings take place in sub-minute intervals.

“This approach of regular cleansings, when coupled with existing intrusion prevention and detection systems, leads to increased overall security,” says Sood. “We know that intrusion detection systems can detect sudden increases in data throughput from a server, so to avoid detection, hackers steal data at low rates. SCIT interrupts the flow of data regularly and automatically, and the data ex-filtration process is interrupted every cleansing cycle. Thus, SCIT, in partnership with intrusion detection systems, limits the volume of data that can be stolen.”

By reducing exposure time, SCIT provides an additional level of protection while efforts are ongoing to find and fix vulnerabilities and correct configuration errors.

SCIT was funded by the Center for Innovative Technology (in partnership with Northrop Grumman), Lockheed Martin, National Institute of Standards and Technology through the Critical Infrastructure Protection Program, Sun Microsystems and the U.S. Army’s Telemedicine and Technology Research Center. Four patents are pending on the SCIT technology.


Story Source:

The above story is based on materials provided by George Mason University. Note: Materials may be edited for content and length.


Cite This Page:

George Mason University. "New Intrusion Tolerance Software Fortifies Server Security." ScienceDaily. ScienceDaily, 18 June 2008. <www.sciencedaily.com/releases/2008/06/080616144905.htm>.
George Mason University. (2008, June 18). New Intrusion Tolerance Software Fortifies Server Security. ScienceDaily. Retrieved March 28, 2015 from www.sciencedaily.com/releases/2008/06/080616144905.htm
George Mason University. "New Intrusion Tolerance Software Fortifies Server Security." ScienceDaily. www.sciencedaily.com/releases/2008/06/080616144905.htm (accessed March 28, 2015).

Share This


More From ScienceDaily



More Computers & Math News

Saturday, March 28, 2015

Featured Research

from universities, journals, and other organizations


Featured Videos

from AP, Reuters, AFP, and other news services

Facebook Building Plane-Sized Drones For Global Internet

Facebook Building Plane-Sized Drones For Global Internet

Newsy (Mar. 27, 2015) Facebook on Thursday revealed more details about its Internet-connected drone project. The drone is bigger than a 737, but lighter than a car. Video provided by Newsy
Powered by NewsLook.com
Robot Returns from International Space Station and Sets Two Guinness World Records

Robot Returns from International Space Station and Sets Two Guinness World Records

Reuters - Light News Video Online (Mar. 27, 2015) The companion robot "Kirobo" returns to earth from the International Space Station and sets two Guinness World Records. Sharon Reich reports. Video provided by Reuters
Powered by NewsLook.com
Smart Bracelet Changes Design With the Touch of a Button

Smart Bracelet Changes Design With the Touch of a Button

Reuters - Innovations Video Online (Mar. 27, 2015) Interactive jewellery that allows users to change designs and doesn&apos;t need charging. Sharon Reich reports. Video provided by Reuters
Powered by NewsLook.com
Twitter's Periscope New Rival for Meerkat

Twitter's Periscope New Rival for Meerkat

Reuters - Business Video Online (Mar. 26, 2015) Twitter has unveiled Periscope, its live-streaming app to rival Meerkat and other emerging apps that have captured the attention of the social media industry. Bobbi Rebell reports. Video provided by Reuters
Powered by NewsLook.com

Search ScienceDaily

Number of stories in archives: 140,361

Find with keyword(s):
Enter a keyword or phrase to search ScienceDaily for related topics and research stories.

Save/Print:
Share:

Breaking News:

Strange & Offbeat Stories


Space & Time

Matter & Energy

Computers & Math

In Other News

... from NewsDaily.com

Science News

Health News

Environment News

Technology News



Save/Print:
Share:

Free Subscriptions


Get the latest science news with ScienceDaily's free email newsletters, updated daily and weekly. Or view hourly updated newsfeeds in your RSS reader:

Get Social & Mobile


Keep up to date with the latest news from ScienceDaily via social networks and mobile apps:

Have Feedback?


Tell us what you think of ScienceDaily -- we welcome both positive and negative comments. Have any problems using the site? Questions?
Mobile: iPhone Android Web
Follow: Facebook Twitter Google+
Subscribe: RSS Feeds Email Newsletters
Latest Headlines Health & Medicine Mind & Brain Space & Time Matter & Energy Computers & Math Plants & Animals Earth & Climate Fossils & Ruins