DocumentCode
3392295
Title
Survivability analysis of distributed systems using attack tree methodology
Author
Fung, Casey ; Chen, Yi-Liang ; Wang, Xinyu ; Lee, Joseph ; Tarquini, Richard ; Anderson, Mark ; Linger, Richard
Author_Institution
Network Centric Oper., Boeing Phantom Works, Seattle, WA
fYear
2005
fDate
17-20 Oct. 2005
Firstpage
583
Abstract
The survivability of system services is defined as the capability of system services to fulfil the mission objectives in the presence of malicious attacks, system failures, or accidents. Because of the severe consequences of system service failures, survivability analysis and mitigation solutions have been regarded as two of the most important aspects in distributed system development. In systems based on service-oriented architectures (SOA), the survivability analysis is fundamentally different from the traditional security-centric approaches that have been developed for traditional object-oriented, component-based systems. Under the new SOA paradigm, a system is regarded as a composition of services, each of which has well-defined goals and functionalities. For as long as a service is an independently developed component with well-defined goals and functionalities, the service can be treated as an independent system in the analysis of survivability. This paper presents an initial case study in adopting the attack tree analysis methodology for survivability study. We proposed a generic model for message-oriented systems based on SOA. This model depicts a messaging substrate composed of a group of messaging brokers with help from discover services and QoS managers to coordinate communication of a service overlay network on top of a mobile ad-hoc network (MANET). We first captured the basic service components in the system and the underlying mobile ad-hoc network. Next, we defined a mission objective in a case study and conducted attack tree analysis on the model system. From the attack tree analysis, we identified intrusion scenarios. Then we suggested a quantitative measure for system survivability. The survivability design task for a system is simply to make intrusion on the identified key components as difficult and costly as possible. From this case study, we identified the compromisable components that could be penetrated and damaged by intrusion and provided s- - uggestions to enhance system survivability
Keywords
ad hoc networks; electronic messaging; mobility management (mobile radio); quality of service; telecommunication network reliability; MANET; QoS managers; attack tree methodology; component-based systems; discover services; distributed systems; intrusion scenarios; message-oriented systems; mobile ad-hoc network; service-oriented architectures; survivability analysis; system service failures; Accidents; Ad hoc networks; Failure analysis; Imaging phantoms; Independent component analysis; Mobile ad hoc networks; Mobile communication; Service oriented architecture; Tree graphs;
fLanguage
English
Publisher
ieee
Conference_Titel
Military Communications Conference, 2005. MILCOM 2005. IEEE
Conference_Location
Atlantic City, NJ
Print_ISBN
0-7803-9393-7
Type
conf
DOI
10.1109/MILCOM.2005.1605745
Filename
1605745
Link To Document