Presentation is loading. Please wait.

Presentation is loading. Please wait.

Tolerating Intrusions Through Secure System Reconfiguration Dennis Heimbigner and Alexander Wolf University of Colorado at Boulder John Knight University.

Published byCollin Marshall Modified over 8 years ago

Similar presentations

Presentation on theme: "Tolerating Intrusions Through Secure System Reconfiguration Dennis Heimbigner and Alexander Wolf University of Colorado at Boulder John Knight University."— Presentation transcript:

1 Tolerating Intrusions Through Secure System Reconfiguration Dennis Heimbigner and Alexander Wolf University of Colorado at Boulder John Knight University of Virginia Prem Devanbu, Michael Gertz, and Karl Levitt University of California at Davis

2 Distributed Active Mngmt. & Control (before/during/after) ATTACKS Intrusion Tolerance Mechanism Critical System Secure System Configuration/ Reconfiguration Secure System Configuration/ Reconfiguration Project Overview Solution Requirements Timely Assured Mediated Automated Driving Principles Bend, don’t break Proactive and reactive Specification/model-based Dynamic tolerance evolution Critical Systems Families Distributed Networked Componentized Configurability Specifications Configurability Specifications Privilege Specifications Privilege Specifications Survivability Specifications Survivability Specifications

3 Posturing Anticipated Attacks Anticipated Attacks Intelligence Information Intelligence Information Vulnerability Analysis Vulnerability Analysis Operational Experience Operational Experience Analysis Posture AttackedThreatenedOver hardened Secure System Configuration/ Reconfiguration Secure System Configuration/ Reconfiguration No requirement to mask faults

4 Survivability Architecture (Logical View) Reactive Active Control Active Control Proactive Active Management Active Management New Postures New Postures Commands Operator Administrator Intelligence Analysis Development Trust boundary During Attack Before and After Attack

5 Survivability Architecture (Physical View) Field Reconfiguration Controller Mediator + Authority Configured Components Activated System Activated System Event Service Coordination Service Depot CIDF Models Agents Models Agents Configured Components Reconfiguration control and/or data channel Event channel Application control and/or data channel Component activation Component deactivation Standard reconfiguration interface Models Agents Components Depot Models Agents Components Mediator Field Reconfiguration Controller Mediator

6 Integrated Technology Strategy u Application reconfiguration for survivability –RAPTOR modeling system –Survivability specification u Agent-based software configuration and deployment –Software Dock software deployment system –Siena wide-area event notification service u Agent and information security –Secure, flexible information access –Trusted code on untrustworthy platforms

7 RAPTOR Modeling System u Arbitrary network topologies u Large model support u Demonstration: –FedWire payment system –10 000 banks –Terrorist bombs –Coordinated attacks u Windows 2000 platform u Available for download soon Vulnerabilities Network Topology Node Semantics Symptoms Network Model Visualization Run-time input Model specification

8 Software Dock Release Retire Install Update Reconfig Adapt Activate Remove Deactivate Development Producer-side Consumer-side Event Service Event Service Field docks represent the consumer and provide an interface to the consumer site Wide-area event service provides connectivity Agents provide deployment process functionality Release docks represent the producer and are a repository of configurable releases Release Dock Release Dock Field Dock Field Dock Field Dock Field Dock Agent u Automated wide-area software deployment u Declarative family configurability u Comprehensive life cycle coverage

9 Secure, Flexible Information Access Publisher 1 Publisher n Owner 1 Owner n Agent Mediator Authority Trusted UntrustedSometimes trusted u Mediators provide to agents information obtained from model owners via publishers u Two complementary forms of security: –Publishers answer queries from mediators, and are untrusted, online, and distinct from owners; they use no secret keys –Authorities, under administrative control, can certify and revoke owner keys and privileges

10 Evaluation u Continuous assessment –Increasingly sophisticated models –Increasingly capable prototypes u Scenario-based approach –Increasingly complex attacks –Informed by interaction with domain experts »banking and finance, power, transportation »security threats and vulnerabilities u Symptom and vulnerability injection u Metrics: speed, precision, and availability

11

Download ppt "Tolerating Intrusions Through Secure System Reconfiguration Dennis Heimbigner and Alexander Wolf University of Colorado at Boulder John Knight University."

Similar presentations

What’s New for 2013 Steve Allen CEO, iDatix Corproation.

What’s New for 2013 Steve Allen CEO, iDatix Corproation.
A Cooperative Approach to Support Software Deployment Using the Software Dock by R. Hall, D. Heimbigner, A. Wolf Sachin Chouksey Ebru Dincel.

A Cooperative Approach to Support Software Deployment Using the Software Dock by R. Hall, D. Heimbigner, A. Wolf Sachin Chouksey Ebru Dincel.
DARPA OASIS PI Meeting – Santa Fe – July 24-27, 2001Slide 1 Aegis Research Corporation Not for Public Release Survivability Validation Framework for Intrusion.

DARPA OASIS PI Meeting – Santa Fe – July 24-27, 2001Slide 1 Aegis Research Corporation Not for Public Release Survivability Validation Framework for Intrusion.
Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.

Security that is... Ergonomic, Economical and Efficient! In every way! Stonesoft SSL VPN SSL VPN.
[Insert Project Name] Detailed Design Review (DDR) [Insert Date of DDR] Centers for Medicare & Medicaid Services eXpedited Life Cycle (XLC)

[Insert Project Name] Detailed Design Review (DDR) [Insert Date of DDR] Centers for Medicare & Medicaid Services eXpedited Life Cycle (XLC)
Sponsored by the U.S. Department of Defense © 2005 by Carnegie Mellon University 1 Pittsburgh, PA 15213-3890 Dennis Smith, David Carney and Ed Morris DEAS.

Sponsored by the U.S. Department of Defense © 2005 by Carnegie Mellon University 1 Pittsburgh, PA Dennis Smith, David Carney and Ed Morris DEAS.
A Java Architecture for the Internet of Things Noel Poore, Architect Pete St. Pierre, Product Manager Java Platform Group, Internet of Things September.

A Java Architecture for the Internet of Things Noel Poore, Architect Pete St. Pierre, Product Manager Java Platform Group, Internet of Things September.
Connect. Communicate. Collaborate Click to edit Master title style MODULE 1: perfSONAR TECHNICAL OVERVIEW.

Connect. Communicate. Collaborate Click to edit Master title style MODULE 1: perfSONAR TECHNICAL OVERVIEW.
The Business Value of CA Solutions Ovidiu VALEANU Senior Consultant DNA Software – CA Regional Representative.

The Business Value of CA Solutions Ovidiu VALEANU Senior Consultant DNA Software – CA Regional Representative.
Trusted Hardware: Can it be Trustworthy? Design Automation Conference 5 June 2007 Karl Levitt National Science Foundation Cynthia E. Irvine Naval Postgraduate.

Trusted Hardware: Can it be Trustworthy? Design Automation Conference 5 June 2007 Karl Levitt National Science Foundation Cynthia E. Irvine Naval Postgraduate.
© 2004 Visible Systems Corporation. All rights reserved. 1 (800) 6VISIBLE www.visible.com Holistic View of the Enterprise Business Development Operations.

© 2004 Visible Systems Corporation. All rights reserved. 1 (800) 6VISIBLE Holistic View of the Enterprise Business Development Operations.
Www.lumension.com © Copyright 2008 - Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.

© Copyright Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.
02/12/00 E-Business Architecture

02/12/00 E-Business Architecture
A Cooperative Approach to Support Software Deployment using the Software Dock Dennis Heimbigner Richard S. Hall Alexander L. Wolf Software Engineering.

A Cooperative Approach to Support Software Deployment using the Software Dock Dennis Heimbigner Richard S. Hall Alexander L. Wolf Software Engineering.
Mobile Agents: A Key for Effective Pervasive Computing Roberto Speicys Cardoso & Fabio Kon University of São Paulo - Brazil.

Mobile Agents: A Key for Effective Pervasive Computing Roberto Speicys Cardoso & Fabio Kon University of São Paulo - Brazil.
AGENT-BASED APPROACH FOR ELECTRICITY DISTRIBUTION SYSTEMS University of Jyväskylä University of Vaasa Acknowledgements: Industrial Ontologies Group.

AGENT-BASED APPROACH FOR ELECTRICITY DISTRIBUTION SYSTEMS University of Jyväskylä University of Vaasa Acknowledgements: Industrial Ontologies Group.
Security Engineering II. Problem Sources 1.Requirements definitions, omissions, and mistakes 2.System design flaws 3.Hardware implementation flaws, such.

Security Engineering II. Problem Sources 1.Requirements definitions, omissions, and mistakes 2.System design flaws 3.Hardware implementation flaws, such.
Managing Agent Platforms with the Simple Network Management Protocol Brian Remick Thesis Defense June 26, 2015.

Managing Agent Platforms with the Simple Network Management Protocol Brian Remick Thesis Defense June 26, 2015.
Network Enabled Capability Through Innovative Systems Engineering Service Oriented Integration of Systems for Military Capability Duncan Russell, Nik Looker,

Network Enabled Capability Through Innovative Systems Engineering Service Oriented Integration of Systems for Military Capability Duncan Russell, Nik Looker,
1 FM Overview of Adaptation. 2 FM RAPIDware: Component-Based Design of Adaptive and Dependable Middleware Project Investigators: Philip McKinley, Kurt.

1 FM Overview of Adaptation. 2 FM RAPIDware: Component-Based Design of Adaptive and Dependable Middleware Project Investigators: Philip McKinley, Kurt.

Similar presentations

Ads by Google