Intrusion Tolerant Architectures


	Computer Science Laboratory

	Contact

	People at CSL

	Projects at CSL

-	Active Networks Test Environment (ACTIVATE)
-	Adaptable Network Control and Reporting System (ANCORS)
-	Agile Management of Dynamic Collaboration
-	Artifactory
-	Autonomous Negotiating Teams (ANT)
-	Bio Informatics
-	Bixie
-	Common Authentication Protocol Specification Language (CAPSL)
-	Compositional Abstraction and Refinement for Aspects (CARA)
-	Correlated Attack Modeling (CAM)
-	Cyber-Threat Analytics (Cyber-TA)
-	Cybersecurity Experimentation of the Future (CEF)
-	DARPA Agent Markup Language (DAML)
-	Dependable Intrusion Tolerance (DIT)
-	Detection and Analysis of Threats to the Energy Sector
-	Detection and Analysis of Threats to the Energy Sector (DATES)
-	Dynamic Dependability Gauges (DASADA)
-	eBayes
-	Enclaves
-	Evaluation Methods for Internet Security Technology (EMIST)
-	Event Monitoring Enabling Responses to Anomalous Live Disturbances (EMERALD)
-	Formal Composition Technology for Time-Triggered Systems
-	Genesis of Cyberscience
-	Integrated Canonizer and Solver (ICS)
-	Internet of Things Security and Privacy Center (IoTSPC)
-	Intrusion Tolerance for NEST
-	Intrusion Tolerant Architectures
-	Maude
-	Mobile Maude
-	Molecular Electronics
-	Network Embedded Systems Technology (NEST)
-	Next Generation (XG)
-	Next-Generation Intrusion-Detection Expert System (NIDES)
-	ONISTT
-	Pathway Logic
-	PHD: Predicting Health and Disease (PHD)
-	Principles and Foundations for Fractionated Networked Cyber-Physical Systems
-	Process Control Systems Security
-	Prototype Verification System (PVS)
-	Public Key Infrastructure (PKI)
-	Secure Access Wrapper (SAW)
-	Semantically Enabled Automated Assessment in Virtual Environments (SAVE)
-	Sensor Coordination using Active Dataspaces
-	Sharing Expertise and Artifacts for Reuse through Cybersecurity Community Hub (SEARCCH)
-	Symbolic Analysis Laboratory (SAL)
-	Trusted Interoperation of Healthcare Information (TIHI)
-	Trusted Interoperation of Heterogeneous Autonomous Databases
-	Virtualized Execution Realizing Network Infrastructures Enhancing Reliability (VERNIER)
	Research Programs

	Division Home

Average software engineering practice and average system complexity produce systems that typically have numerous vulnerabilities. Designing a system with maximal security assurance requires avoiding introducing vulnerabilities in the first place, removing known vulnerabilities, and stopping known vulnerabilities whose removal is not practical from being exploited by attackers.

Intrusion tolerance is the ultimate defense and assumes that unknown or unmitigated vulnerabilities remain in the system. The objective of intrusion tolerance is to maintain acceptable (but possibly degraded) system services when intrusions occur.

Project Objectives

We intend to define abstract intrusion-tolerance properties at the architectural level and study mechanisms that can be used to ensure these properties. We will be able to decompose emergent intrusion tolerance properties into much simpler, directly verifiable architectural properties.

We will investigate definitions of levels of intrusion tolerance, based on acceptable risk and balanced protection.

We will define architectural refinement patterns and architectural styles that are relevant for building intrusion tolerant architectures.

We will examine how our ideas can be applied in the development of real systems.

Recent Publications:

Project Partners:

NAI Labs: Lee Benzinger and Jan Filsinger

Funding Agency:

DARPA Information Systems Office

Related Sites:

Staff Members:

Papers:

Intrusion-Tolerant Enclaves (2002)

About Us R&D Divisions Careers Newsroom Contact Us
© 2024 SRI International 333 Ravenswood Avenue, Menlo Park, CA 94025-3493
SRI International is an independent, nonprofit corporation. Privacy policy