摘要
目前计算机安全领域的研究主要集中在入侵防御等方面,无法保证系统在受到攻击的状态下继续提供有效服务.提出了一种新的系统完整性控制机制,以及如何基于该机制构建Attack-Tolerant系统.实时系统完整性控制机制能够实时检测系统非正常改动并自动恢复,确保系统服务在受到攻击的状态下运作正常,保证了系统的机密性、有效性与完整性.
Nowdays, security researches focus on intrusion-tolerant systems which are not conceived to be invulnerable, but rather to be able to withstand the impact of an attack and continue providing critical services despite ongoing attacks. A new system integrity control mechanism and how to implement attack-tolerant system based on it are presented in the paper. On-the-fly system integrity control mechanism detects unauthorized modifications and restores the system automatically as quickly as possible, ensures that system can continue providing critical services despite ongoing attacks, and keeps the integrity, availability and confidentiality of system successfully.
出处
《江南大学学报(自然科学版)》
CAS
2006年第5期526-530,共5页
Joural of Jiangnan University (Natural Science Edition)
