A new approach to evaluate the operational security of the Intrusion Tolerant System (ITS) is proposed. It is based on the mapping of the concept of the system security into that of system dependability. This approach permits to consider in the unified viewall the security strategies and mechanisms to realize the defense system. Therefore the semi-Markov process is used to emulate the variability of the fault rate. Owing to the strong connection of the operational security of ITS with the attributes of system dependability (availability, integrity, confidentiality and reliability), the measurement procedure is pointed out to estimate the security parameters (availability, integrity, confidentiality), and the index for the operational security evaluation. This last is the Mean Time To Security Failure and is correlated to the attribute of system reliability. Indeed, it takes into consideration as long is immunity of the system to the attack. Numerical results of three case studies are shown to validate the measurement procedure.

An approach to measure the operational security of intrusion tolerant systems

Carnì, Domenico Luca;Grimaldi, Domenico
2010-01-01

Abstract

A new approach to evaluate the operational security of the Intrusion Tolerant System (ITS) is proposed. It is based on the mapping of the concept of the system security into that of system dependability. This approach permits to consider in the unified viewall the security strategies and mechanisms to realize the defense system. Therefore the semi-Markov process is used to emulate the variability of the fault rate. Owing to the strong connection of the operational security of ITS with the attributes of system dependability (availability, integrity, confidentiality and reliability), the measurement procedure is pointed out to estimate the security parameters (availability, integrity, confidentiality), and the index for the operational security evaluation. This last is the Mean Time To Security Failure and is correlated to the attribute of system reliability. Indeed, it takes into consideration as long is immunity of the system to the attack. Numerical results of three case studies are shown to validate the measurement procedure.
2010
9781617823381
Electrical and Electronic Engineering; Modeling and Simulation
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/20.500.11770/285294
 Attenzione

Attenzione! I dati visualizzati non sono stati sottoposti a validazione da parte dell'ateneo

Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 0
  • ???jsp.display-item.citation.isi??? ND
social impact