A Novel Intrusion Tolerant System Using Live Migration

Yongjoo SHIN  Sihu SONG  Yunho LEE  Hyunsoo YOON  

Publication
IEICE TRANSACTIONS on Information and Systems   Vol.E97-D   No.4   pp.984-988
Publication Date: 2014/04/01
Online ISSN: 1745-1361
DOI: 10.1587/transinf.E97.D.984
Type of Manuscript: LETTER
Category: Dependable Computing
Keyword: 
intrusion tolerant system (ITS),  proactive & reactive recovery,  live migration,  denial of service (DoS),  

Full Text: PDF(420.4KB)>>
Buy this Article




Summary: 
This letter proposes a novel intrusion tolerant system consisting of several virtual machines (VMs) that refresh the target system periodically and by live migration, which monitors the many features of the VMs to identify and replace exhausted VMs. The proposed scheme provides adequate performance and dependability against denial of service (DoS) attacks. To show its efficiency and security, we conduct experiments on the CSIM20 simulator, which showed 22% improvement in a normal situation and approximately 77.83% improvement in heavy traffic in terms of the response time compared to that reported in the literature. We measure and compare the response time. The result show that the proposed scheme has shorter response time and maintains than other systems and supports services during the heavy traffic.