Effective fault treatment for improving the dependability of COTS and legacy-based applications

Bondavalli, Andrea; Chiaradonna, Silvano; Cotroneo, Domenico; Romano, Luigi

doi:10.1109/tdsc.2004.40

Cited by 33 publications

(14 citation statements)

References 28 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This is not a requirement of many intrusion-tolerant systems, but it is definitely of importance for unattended operation, as is desired of the control part of CII. -Trustworthiness monitoring to perform surveillance of the coverage stability of the system, that is, of whether it is still performing inside the assumed fault envelope or beyond assumptions made [2]. In the latter case, dependable adaptation mechanisms are triggered to stabilize coverage and thus, the operational guarantees.…”

Section: Key Architecture Aspectsmentioning

confidence: 99%

See 1 more Smart Citation

The CRUTIAL Architecture for Critical Information Infrastructures

Verı́ssimo

Neves

Correia

et al. 2008

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. In this chapter we discuss the susceptibility of critical information infrastructures to computer-borne attacks and faults, mainly due to their largely computerized nature, and to the pervasive interconnection of systems all over the world. We discuss how to overcome these problems and achieve resilience of critical information infrastructures, through adequate architectural constructs. The architecture we propose is generic and may come to be useful as a reference for modern critical information infrastructures. We discuss four main aspects: trusted components which induce prevention; middleware devices that achieve runtime automatic tolerance and protection; trustworthiness monitoring mechanisms detecting and adapting to non-predicted situations; organization-level security policies and access control models capable of securing global information flows.

show abstract

Section: Key Architecture Aspectsmentioning

confidence: 99%

“…Extended analyzes about parameter tuning are available in [3] while applications and variants are described in [2] [18]. Probabilistic diagnosis.…”

Section: Monitored Component (Mc)mentioning

confidence: 99%

The CRUTIAL Architecture for Critical Information Infrastructures

Verı́ssimo

Neves

Correia

et al. 2008

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…Automated diagnosis in COTS systems: Automated diagnosis for black-box distributed COTS components is addressed in [32], [33]. The system model has replicated COTS application components, whose outputs are voted on and the replicas which differ from the majority are considered suspect.…”

Section: Debugging In Distributed Applicationsmentioning

confidence: 99%

Distributed Diagnosis of Failures in a Three Tier E-Commerce System

Khanna

Laguna

Arshad

et al. 2007

2007 26th IEEE International Symposium on Reliable Distributed Systems (SRDS 2007)

View full text Add to dashboard Cite

Abstract. For dependability outages in distributed internet infrastructures, it is often not enough to detect a failure, but it is also required to diagnose it, i.e., to identify its source. Complex applications deployed in multi-tier environments, such as the classic three tier e-commerce system, make diagnosis challenging because of fast error propagation, black-box applications, constraints on the diagnosis delay, the amount of states that can be maintained, and imperfect diagnostic tests. Here, we propose a probabilistic diagnosis model for arbitrary failures in components of a distributed application. The monitoring system (the Monitor) passively observes the message exchanges between the components and at runtime, performs a probabilistic diagnosis of the component that was the root cause of a detected failure. The diagnosis model takes into account the possibility of a service failure, link failure, test imperfection, and lack of perfect observability at the monitoring station. We demonstrate the approach by applying it to a J2EE-based e-commerce application called Pet Store exercising a workload of browse-and-buy user transactions. We compare our approach with Pinpoint by quantifying the latency and accuracy of the two systems. The Monitor system outperforms Pinpoint by achieving comparably accurate diagnosis with higher precision in shorter time.

show abstract

“…One of the innovative aspects of this work, further to intrusion tolerance, is the resilience aspect, approached through two paradigms: proactive-resilience to achieve exhaustion-safety [9], to ensure perpetual, non-stop operation despite the continuous production of faults and intrusions; and trustworthiness monitoring to perform surveillance of the coverage stability of the system, that is, of whether it is still performing inside the assumed fault envelope or beyond assumptions made [2]. In the latter case, dependable adaptation mechanisms are triggered.…”

Section: Crutial Architecturementioning

confidence: 99%

CRUTIAL: The Blueprint of a Reference Critical Information Infrastructure Architecture

Verı́ssimo

Neves

Correia

2006

Critical Information Infrastructures Security

View full text Add to dashboard Cite

Abstract. The largely computerised nature of critical infrastructures and the pervasive interconnection of systems all over the world have generated the problem of achieving resilience of critical information infrastructures, namely against computer-borne attacks and severe faults. We believe the complexity of the problem prevents it from being solved using classical security methods. The paper focuses on the computer systems behind electrical utility infrastructures, and proposes the blueprint of a distributed systems architecture that we believe may come to be useful as a reference for modern critical information infrastructures in general. The architecture is populated with a set of classes of techniques and algorithms, based on paradigms providing resilience to faults and attacks in an automatic way.

show abstract

Effective fault treatment for improving the dependability of COTS and legacy-based applications

Cited by 33 publications

References 28 publications

The CRUTIAL Architecture for Critical Information Infrastructures

The CRUTIAL Architecture for Critical Information Infrastructures

Distributed Diagnosis of Failures in a Three Tier E-Commerce System

CRUTIAL: The Blueprint of a Reference Critical Information Infrastructure Architecture

Contact Info

Product

Resources

About