Slashdot Mirror

← Back to Stories (view on slashdot.org)

Intrusion Tolerance - Security's Next Big Thing?

Posted by simoniker on from the affix-welcome-mat-to-servers dept.

An anonymous reader writes "DARPA's OASIS program consists of more than 20 research projects in intrusion-tolerant systems. The basic idea is to concede that systems will be penetrated by malware and hackers, but to keep operating anyway. Other projects take a wide variety of technical approaches to providing intrusion tolerance. MIT's Automatic Trust Management uses models of trust to choose from a variety of ways to achieve system goals; Duke/MCNC's SITAR (Scalable Intrusion Tolerant Architecture) adapts tricks from fault-tolerant systems and distributes decision-making; BBN-Illinois-Maryland-Boeing's ITUA employs unpredictable adaptation. Shutting down the military while waging war is not an option, but the idea of continuing to operating critical defense systems even after known penetration by hostile hackers or damaging worms will take some getting used to."

15 of 170 comments (clear)

  1. Ed note : no, it isn't by Anonymous Coward · · Score: 4, Funny

    What to do when penetrated

    1) Remove all sources of power
    2) Incinterate the hard disk, ram, motherboard and most importantly, the sys admin who was in charge of the box.
    3) Bury the ahses in a safe concrete cavern, do not touch for 1000 years.

    1. Re:Ed note : no, it isn't by Anonymous Coward · · Score: 2, Funny

      My wife calls my name when penetrated. Why can't my computer do that?

  2. "intrusion tolerance" by lingqi · · Score: 3, Funny

    upon hearing this, my first thought was the chatter-box prostitute from Bruce-Willis's "Last Man Standing."

    Somebody drag my mind out of the gutter please!

    --

    My life in the land of the rising sun.

  3. Prior Art? by Anonymous Coward · · Score: 5, Funny

    " concede that systems will be penetrated by malware and hackers, but to keep operating anyway"

    Hasn't this always been the strategy of Windows? Now if they could just finish implementing that second part...

  4. Jeepers ... by Mainframes+ROCK! · · Score: 3, Funny

    ... sounds like somebody is reinventing Multics... again.

  5. Repeat after me... by Atario · · Score: 4, Funny

    ...this new mantra of security.

    I must not fear. Fear is the mind-killer. Fear is the little death that brings total obliteration. I will face my fear. I will permit it to pass over me and through me. And when it has gone past, I will turn the inner eye to see its path. Where the fear has gone there will be nothing. Only I will remain.

    -- The Bene Gesserit Litany of Fear
    Dune by Frank Herbert

    --
    "A great democracy must be progressive or it will soon cease to be a great democracy." --Theodore Roosevelt
    1. Re:Repeat after me... by Aadain2001 · · Score: 2, Funny

      Did you get permission to post that? If not, the feds are on their way to your house right now :)

      --
      Space for rent, inquire within
    2. Re:Repeat after me... by Monkelectric · · Score: 5, Funny
      ...this new mantra of security.

      This replaces the old mantra right? "I refuse to patch, for patches deny faith, and without faith I am nothing." (Douglas Adams)

      --

      Religion is a gateway psychosis. -- Dave Foley

  6. Example of intrusion tolerant system by goombah99 · · Score: 4, Funny

    All micorsoft operating systems are extremely compliant with RFC intrusion tolerance. Indeed they positively welcome intruders open arms and open legs. once in the intruder can pretty much do as they please. If that isn't intrusion tolerant I dont know what is.

    --
    Some drink at the fountain of knowledge. Others just gargle.
  7. The next big thing? by Valar · · Score: 2, Funny

    More likely, the next big jive word my boss is going to get obsessed with. I mean, sure, it's a great idea, and eventually I see it coming into heavy use, but for right now, I just see the corporate types throwing it around in their techno-babble pissing matches

    Suit 1: We've got 10,000 uberhumungo servers running Microsoft 2003 Humungo Server Edition, with b2b backend, integrated transaction safe, load-balanced Humungo Edition IIS.
    Suit 2: Well, we have all of that, plus Intrusion Tolerance.
    Suit 1: Oh, baby. Can I merge with you?

    --

    ====
    Crudely Drawn Games
  8. tolerance and love by perimorph · · Score: 2, Funny

    Oh... I thought we were going to start being Politically Correct and stop saying bad things about script kiddies.. I'm relieved to see the world hasn't quite reached that level or purgatory just yet.

  9. Nothing New... by st0rmshadow · · Score: 3, Funny

    This is nothing new, Windows has had tolerance towards intrusions for years...

  10. New HCC RAM design for this kind of application by Jah-Wren+Ryel · · Score: 2, Funny

    One project is working on a new standard for memory in DIMM form - the HCC DIMM - Hacker Checking and Correcting memory.

    --
    When information is power, privacy is freedom.
  11. Re:Article is FLAWED! No Mac OS (9.x, 8.x) hack ev by scphantm · · Score: 2, Funny

    maybe its because noone bothered trying =-)

    this coming from someone that has been begging his boss for a mac laptop for 2 months. mini-me sold it, i want one.

    --
    *** I suffer from a colorful array of psychological problems
  12. Re:BIological Systems - Scares me! by ralphclark · · Score: 2, Funny
    But I'd rather be a heavily-taxed under-represented colonist of a foreign empire than a farm animal to machine masters any day.
    Well I, for one, welcome our new computer overlords.

    Dintcha just know that was coming? :o)