TY - GEN
T1 - Practical Intrusion-Tolerant Networks
AU - Obenshain, Daniel
AU - Tantillo, Thomas
AU - Babay, Amy
AU - Schultz, John
AU - Newell, Andrew
AU - Hoque, Md Edadul
AU - Amir, Yair
AU - Nita-Rotaru, Cristina
N1 - Publisher Copyright:
© 2016 IEEE.
PY - 2016/8/8
Y1 - 2016/8/8
N2 - As the Internet becomes an important part of the infrastructure our society depends on, it is crucial to construct networks that are able to work even when part of the network is compromised. This paper presents the first practical intrusion-tolerant network service, targeting high-value applications such as monitoring and control of global clouds and management of critical infrastructure for the power grid. We use an overlay approach to leverage the existing IP infrastructure while providing the required resiliency and timeliness. Our solution overcomes malicious attacks and compromises in both the underlying network infrastructure and in the overlay itself. We deploy and evaluate the intrusion-tolerant overlay implementation on a global cloud spanning East Asia, North America, and Europe, and make it publicly available.
AB - As the Internet becomes an important part of the infrastructure our society depends on, it is crucial to construct networks that are able to work even when part of the network is compromised. This paper presents the first practical intrusion-tolerant network service, targeting high-value applications such as monitoring and control of global clouds and management of critical infrastructure for the power grid. We use an overlay approach to leverage the existing IP infrastructure while providing the required resiliency and timeliness. Our solution overcomes malicious attacks and compromises in both the underlying network infrastructure and in the overlay itself. We deploy and evaluate the intrusion-tolerant overlay implementation on a global cloud spanning East Asia, North America, and Europe, and make it publicly available.
KW - Intrusion Tolerance
KW - Overlay Networks
KW - Resilient Networks
UR - http://www.scopus.com/inward/record.url?scp=84985902372&partnerID=8YFLogxK
UR - http://www.scopus.com/inward/citedby.url?scp=84985902372&partnerID=8YFLogxK
U2 - 10.1109/ICDCS.2016.99
DO - 10.1109/ICDCS.2016.99
M3 - Conference contribution
AN - SCOPUS:84985902372
T3 - Proceedings - International Conference on Distributed Computing Systems
SP - 45
EP - 56
BT - Proceedings - 2016 IEEE 36th International Conference on Distributed Computing Systems, ICDCS 2016
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 36th IEEE International Conference on Distributed Computing Systems, ICDCS 2016
Y2 - 27 June 2016 through 30 June 2016
ER -