18th Annual Computer Security Applications Conference
December 9-13, 2002
Las Vegas, Nevada

Architectures for Intrusion Tolerant Database Systems

Peng Liu
The Pennsylvania State University

In this paper, we propose four architectures for intrusion tolerant database systems. While traditional secure database systems rely on prevention controls, an intrusion tolerant database system can operate through attacks in such a way that the system can continue delivering essential services in face of attacks. Architecture I can detect intrusions, and locate and repair the damage caused by the intrusions. Architecture II enhances Architecture I with the ability to isolate attacks so that the database can be immunized from the damage caused by a lot of attacks. Architecture III enhances Architecture I with the ability to dynamically contain the damage in such a way that no damage will leak out during the attack recovery process. Architecture IV enhances Architectures II and III with the ability to adapt the intrusion tolerance control to the changing environment so that a stabilized level of trustworthiness can be maintained.

Keywords: Survivability, Intrusion Tolerance, Database Security

Read Paper Read Paper (in PDF)