Title :
Building intrusion tolerant applications
Author :
Malkin, Michael ; Wu, Thomas ; Boneh, Dan
Author_Institution :
Stanford Univ., CA, USA
fDate :
6/22/1905 12:00:00 AM
Abstract :
The ITTC project (Intrusion Tolerance via Threshold Cryptography) provides tools and an infrastructure for building intrusion tolerant applications. Rather than prevent intrusions or detect them after the fact, the ITTC system ensures that the compromise of a few system components does not compromise sensitive security information. To do so we protect cryptographic keys by distributing them across a few servers. The keys are never reconstructed at a single location. Our designs are intended to simplify the integration of ITTC into existing applications. We give examples of embedding ITTC into the Apache web server and into a Certification Authority (CA). Performance measurements on both the modified web server and the modified CA show that the architecture works and performs well
Keywords :
cryptography; search engines; Apache web server; ITTC project; Intrusion Tolerance via Threshold Cryptography; certification authority; cryptographic keys; modified web server; performance measurements; sensitive security information; Certification; Cryptography; Information security; Measurement; Performance evaluation; Protection; Service oriented architecture; Web server;
Conference_Titel :
DARPA Information Survivability Conference and Exposition, 2000. DISCEX '00. Proceedings
Conference_Location :
Hilton Head, SC
Print_ISBN :
0-7695-0490-6
DOI :
10.1109/DISCEX.2000.824963
