%0 Journal Article
%T Virtualization-based Recovery Approach for Intrusion Tolerance
%A Jian-Hua Huang
%A Jun Huang
%A Rong Li
%A Xiao-Ming Li
%J Information Technology Journal
%D 2013
%I Asian Network for Scientific Information
%X It is well known that increasing redundancy in a system generally improves the availability and dependability of the system. In this study, we present a Virtualization-based Recovery for Intrusion Tolerance (VRIT) architecture that strengthens clusterĄ¯s availability and dependability through periodic and event-driven recovery. By periodically reverting each virtual server to a pristine state, the VRIT cluster can limit the online exposure time of all servers, ensuring that even undetected attacks will be thwarted or at least be limited. Anomaly detection engines are installed in every virtual server to enable event-driven recovery within a fixed recovery cycle. Accumulated intrusion reports will prompt the compromised servers to be reverted earlier. A control algorithm is designed to manage both security and service availability. Experimental results demonstrate good performance of the algorithm.
%K Virtualization
%K intrusion tolerance
%K recovery
%K virtual servers
%U http://docsdrive.com/pdfs/ansinet/itj/2013/385-390.pdf