Title :
CuPIDS enhances StUPIDS: exploring a co-processing paradigm shift in information system security
Author :
Williams, Paul D. ; Spafford, Eugene H.
Author_Institution :
CERIAS, Purdue Univ., West Lafayette, IN, USA
Abstract :
The CuPIDS project is an exploration of increasing information system security by dedicating computational resources to system security tasks in a shared resource, multiprocessor (MP) architecture. Our research explores ways in which this architecture offers improvements over the traditional uniprocessor (UP) model of security. There are a number of areas to explore, one of which has a protected application running on one processor in a symmetric multiprocessing (SMP) system while a shadow process specific to that application runs on a different processor, monitoring its activity, ready to respond immediately if the application veers off course. This paper describes initial work into defining such an architecture and the prototype work done to validate our ideas.
Keywords :
coprocessors; information systems; security of data; shared memory systems; system monitoring; CuPIDS project; StUPIDS; activity monitoring; computational resource; coprocessing intrusion detection system; information system security; shadow process; shared resource multiprocessor architecture; symmetric multiprocessing system; Event detection; Face detection; Information security; Information systems; Intrusion detection; Monitoring; Production systems; Protection; Prototypes; Robustness;
Conference_Titel :
Information Assurance Workshop, 2005. IAW '05. Proceedings from the Sixth Annual IEEE SMC
Print_ISBN :
0-7803-9290-6
DOI :
10.1109/IAW.2005.1495943
