Building hybrid recovery-based intrusion tolerant system for survivable and seamless service = 생존성있고 끊김없는 서비스 제공을 위한 하이브리드 복구기반 침입감내시스템 구축에 관한 연구

Cited 0 time in webofscience Cited 0 time in scopus
  • Hit : 269
  • Download : 0
The rapid technological improvements in modern Internet infrastructures have had considerable influence on our daily lives. Valuable and confidential information is arising over the network and various services using Web applications have penetrated all aspects of the lives of people. ITSs (Intrusion Tolerant Systems) have been proposed to ensure seamless service delivery and real-time service under the sophisticated and advanced attacks. To achieve enhanced intrusion tolerant, we proposed hybrid recovery-based ITS to maintain a critical service in various attacks. The proposed ITS utilizes hybrid recovery (proactive recovery an reactive recovery) and dynamic cluster resizing. The hybrid recovery operates the recovery process both proactive and reactive ways for the system to gain shorter exposure times and higher success rates. The reactive recovery to complement the proactive recovery is effective in reacting to a stealthy resource exhaustion attack such as the application-layer DDoS attack. The dynamic cluster resizing reduces the overhead of the system that occurs from dynamic workload fluctuation, and mitigate the volumetric DDoS attacks. Using the CloudSim simulator, the performance of proposed ITS offers ensures high availability and reliability for the various workloads, even under attacks. Moreover, to prove the feasibility and superiority of the performance of proposed ITS, we implemented a prototype based on Docker (container-based virtualization) and tested it with an attack using real vulnerability.
Advisors
Yoon, Hyunsooresearcher윤현수researcher
Description
한국과학기술원 :전산학부,
Publisher
한국과학기술원
Issue Date
2017
Identifier
325007
Language
eng
Description

학위논문(박사) - 한국과학기술원 : 전산학부, 2017.2,[iv, 54 p. :]

Keywords

Intrusion Tolerant System; hybrid recovery-based ITS; virtualization; hybird recovery; dynamic cluster resizing; CloudSim; Docker; 침입감내시스템; 하이브리드 복구기반 침입감내시스템; 가상화; 하이브리드 복구; 다이나믹 클러스터 리사이징; 클라우드심; 도커

URI
http://hdl.handle.net/10203/242088
Link
http://library.kaist.ac.kr/search/detail/view.do?bibCtrlNo=675858&flag=dissertation
Appears in Collection
CS-Theses_Ph.D.(박사논문)
Files in This Item
There are no files associated with this item.

qr_code

  • mendeley

    citeulike


rss_1.0 rss_2.0 atom_1.0