Author:
Sanoussi Nouhad,Orhanou Ghizlane
Abstract
The wide spread of the Internet leads to the expansion of networks and the increase of data. For this reason, the use of emerging technologies became a necessity to cover the needs and the lapses in traditional systems. However, these systems might reveal security flaws and become vulnerable to attacks. Security is therefore essential to ensure the confidentiality, integrity, and availability of system data and services. As the attacks get more sophisticated, the protection gets more difficult. In fact, mechanisms such as Firewalls, IDSs, and IPSs are still ineffective against unknown attacks. Consequently, defense-in-depth security should include intrusion tolerance. The concern of intrusion tolerance is not how to defend or detect the intrusion, but how to mask or restrain the intrusion when the network has been intruded. Using three separate lines of approaches: Detection-Triggered, Algorithm-Driven, and Recovery Based, this paper will present, analyze, and contrast several works in two different environments: Cloud Computing and Software Defined Networks (SDNs), to proceed towards Intrusion Tolerant Systems (ITSs).
Reference12 articles.
1. Koren I., Krishna C.M., Elsevier/Morgan Kaufmann, (2020)
2. A Comparison of Intrusion-Tolerant System Architectures
3. Security analysis of SITAR intrusion tolerance system
4. Veríssimo Paulo E., Neves Nuno F., Cachin C., Poritz J., Powell D., Deswarte Y., Stroud R., Welch I., IEEE Security and Privacy, (2006)