Presentation is loading. Please wait.

Presentation is loading. Please wait.

The Starfish System: Intrusion Detection and Intrusion Tolerance for Middleware Systems Kim Potter Kihlstrom Westmont College Santa Barbara, CA, USA Priya.

Published bySophia Garrett Modified over 9 years ago

Similar presentations

Presentation on theme: "The Starfish System: Intrusion Detection and Intrusion Tolerance for Middleware Systems Kim Potter Kihlstrom Westmont College Santa Barbara, CA, USA Priya."— Presentation transcript:

1 The Starfish System: Intrusion Detection and Intrusion Tolerance for Middleware Systems Kim Potter Kihlstrom Westmont College Santa Barbara, CA, USA Priya Narasimhan Carnegie Mellon University Pittsburgh, PA, USA

2 The Starfish SystemKihlstrom and Narasimhan Motivation Previous work SecureRing [ACM TISSEC 2001] Eternal [TAPOS 1998] Immune [ICDCS 1999] Byzantine fault detectors [Computer Journal 2003] Insights and lessons learned Cost of survivability Replication of objects Input and output majority voting Guarantees of underlying multicast protocol Detection and removal of faulty processors/replicas

3 The Starfish SystemKihlstrom and Narasimhan Immune: Looking Back Interception Replication Majority voting Secure multicast protocols

4 The Starfish SystemKihlstrom and Narasimhan Immune: Looking Ahead Issues left open Scalability Increasing number of objects Increasing number of processors Local area to wide area Bandwidth Survivability of Immune itself Voting Other middleware systems besides CORBA Led to development of Starfish

5 The Starfish SystemKihlstrom and Narasimhan Starfish Goals Intrusion detection and intrusion tolerance for middleware applications Not specific to any middleware system Infrastructural support for majority voting End-to-end intrusion detection Applicable to local and wide area systems Currently under development

6 The Starfish SystemKihlstrom and Narasimhan Starfish Organization

7 The Starfish SystemKihlstrom and Narasimhan Starfish Philosophy Central core Highly secure Tightly coupled Arms Less tightly coupled Less stringent security guarantees Can be removed in event of security compromise New arms can be grown

8 The Starfish SystemKihlstrom and Narasimhan Starfish Structure

9 The Starfish SystemKihlstrom and Narasimhan System Model Assumptions Distributed object system Asynchronous Determinism Faults Communication Processor Object

10 The Starfish SystemKihlstrom and Narasimhan Support for Voting Objects are replicated Replica consistency in event of malicious processor and object replica faults Object group abstraction

11 The Starfish SystemKihlstrom and Narasimhan Support for Voting Voting in a dynamic environment Knowledge of how many votes constitute a majority Voter must know the number of replicas in the originating object group Hierarchical membership structure Object groups and voting groups

12 The Starfish SystemKihlstrom and Narasimhan Support for Voting

13 The Starfish SystemKihlstrom and Narasimhan End-to-End Intrusion Detection Removal of faulty replica from object group and all voting groups To remove a faulty replica, all replicas in object group must receive evidence of value fault Special Value_Fault_Vote message Value fault detector

14 The Starfish SystemKihlstrom and Narasimhan End-to-End Intrusion Detection

15 The Starfish SystemKihlstrom and Narasimhan End-to-End Intrusion Detection

16 The Starfish SystemKihlstrom and Narasimhan End-to-End Intrusion Detection

17 The Starfish SystemKihlstrom and Narasimhan End-to-End Intrusion Detection

18 The Starfish SystemKihlstrom and Narasimhan End-to-End Intrusion Detection

19 The Starfish SystemKihlstrom and Narasimhan End-to-End Intrusion Detection Removal of processor hosting faulty replica from system Byzantine fault detector To remove the processor, all processors must vote locally on the same set of votes Special base group Problem with cascading: fault must be handled first at the object level

20 The Starfish SystemKihlstrom and Narasimhan Survivability in Starfish ClassificationFaultMechanism Communication Message loss Reliable delivery mechanisms Message retransmission Message corruption Message digest Message retransmission Processor Processor crash Processor, object, and voting group membership Failure to receive Processor, object, and voting group membership Malicious processor Byzantine fault detector Object Replica crash Object and voting group membership Send omission Majority voting on invocations and responses Value faultValue fault detector

21 The Starfish SystemKihlstrom and Narasimhan Conclusions Development underway Prior experience in building systems SecureRing Eternal Immune Take insights and lessons in building next generation survivable object system: Starfish

22 The Starfish SystemKihlstrom and Narasimhan Starfish Intrusion detection and intrusion tolerance for middleware applications Not specific to any middleware system Infrastructural support for majority voting End-to-end intrusion detection Applicable to local and wide area systems

23 The Starfish SystemKihlstrom and Narasimhan Questions and Feedback Kim Potter Kihlstrom kimkihls@westmont.edu http://homepage.westmont.edu/~kimkihls/ Priya Narasimhan priya@cs.cmu.edu http://www.cs.cmu.edu/~priya/

Download ppt "The Starfish System: Intrusion Detection and Intrusion Tolerance for Middleware Systems Kim Potter Kihlstrom Westmont College Santa Barbara, CA, USA Priya."

Similar presentations

Automatic Generation of Fault-Tolerant CORBA-Services Andreas Polze, Janek Schwarz and Miroslaw Malek Department of Computer Science Humboldt-University.

Automatic Generation of Fault-Tolerant CORBA-Services Andreas Polze, Janek Schwarz and Miroslaw Malek Department of Computer Science Humboldt-University.
Causality in online gaming Objectives – Understand how online gaming relates to causality research in distributed systems – Be able to apply distributed.

Causality in online gaming Objectives – Understand how online gaming relates to causality research in distributed systems – Be able to apply distributed.
Impossibility of Distributed Consensus with One Faulty Process

Impossibility of Distributed Consensus with One Faulty Process
Byzantine Generals. Outline r Byzantine generals problem.

Byzantine Generals. Outline r Byzantine generals problem.
Pontus Boström and Marina Waldén Åbo Akademi University/ TUCS Development of Fault Tolerant Grid Applications Using Distributed B.

Pontus Boström and Marina Waldén Åbo Akademi University/ TUCS Development of Fault Tolerant Grid Applications Using Distributed B.
1 The Case for Byzantine Fault Detection. 2 Challenge: Byzantine faults Distributed systems are subject to a variety of failures and attacks Hacker break-in.

1 The Case for Byzantine Fault Detection. 2 Challenge: Byzantine faults Distributed systems are subject to a variety of failures and attacks Hacker break-in.
Carnegie Mellon Approved for Public Release, Distribution Unlimited Increasing Intrusion Tolerance Via Scalable Redundancy Michael Reiter

Carnegie Mellon Approved for Public Release, Distribution Unlimited Increasing Intrusion Tolerance Via Scalable Redundancy Michael Reiter
The Byzantine Generals Problem Boon Thau Loo CS294-4.

The Byzantine Generals Problem Boon Thau Loo CS294-4.
L-15 Fault Tolerance 1. Fault Tolerance Terminology & Background Byzantine Fault Tolerance Issues in client/server Reliable group communication 2.

L-15 Fault Tolerance 1. Fault Tolerance Terminology & Background Byzantine Fault Tolerance Issues in client/server Reliable group communication 2.
Reliability on Web Services Presented by Pat Chan 17/10/2005.

Reliability on Web Services Presented by Pat Chan 17/10/2005.
EEC 688/788 Secure and Dependable Computing Lecture 12 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

EEC 688/788 Secure and Dependable Computing Lecture 12 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University
A Dependable Auction System: Architecture and an Implementation Framework

A Dependable Auction System: Architecture and an Implementation Framework
CS 582 / CMPE 481 Distributed Systems Fault Tolerance.

CS 582 / CMPE 481 Distributed Systems Fault Tolerance.
EEC 688/788 Secure and Dependable Computing Lecture 12 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

EEC 688/788 Secure and Dependable Computing Lecture 12 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University
Filterfresh Fault-tolerant Java Servers Through Active Replication Arash Baratloo www.cs.nyu.edu/phd_students/baratloo.

Filterfresh Fault-tolerant Java Servers Through Active Replication Arash Baratloo
1 Principles of Reliable Distributed Systems Lecture 5: Failure Models, Fault-Tolerant Broadcasts and State-Machine Replication Spring 2005 Dr. Idit Keidar.

1 Principles of Reliable Distributed Systems Lecture 5: Failure Models, Fault-Tolerant Broadcasts and State-Machine Replication Spring 2005 Dr. Idit Keidar.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 12 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 12 Wenbing Zhao Department of Electrical and Computer Engineering.
EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 13 Wenbing Zhao Department of Electrical and Computer Engineering.

EEC 693/793 Special Topics in Electrical Engineering Secure and Dependable Computing Lecture 13 Wenbing Zhao Department of Electrical and Computer Engineering.
FTMP: A Fault-Tolerant Multicast Protocol Louise E. Moser Department of Electrical and Computer Engineering University of California, Santa Barbara.

FTMP: A Fault-Tolerant Multicast Protocol Louise E. Moser Department of Electrical and Computer Engineering University of California, Santa Barbara.
EEC 688/788 Secure and Dependable Computing Lecture 13 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

EEC 688/788 Secure and Dependable Computing Lecture 13 Wenbing Zhao Department of Electrical and Computer Engineering Cleveland State University

Similar presentations

Ads by Google