Intrusion tolerance system is a new technology of network security. It can provide acceptable or degraded system service when intrusions occur. In this article, the system's basic function, technique and objective are introduced. A kind of state transition model is discussed. The intrusion tolerance architecture based on state the transition model and several vulnerabilities cases are proposed.