Research on intrusion tolerance system based on behavioral baseline and defense-in-depth architecture

Qi Meng; Xuemeng Wang; Kai Yang; Long Meng; Jiancheng Wang; Jinlong Fei

doi:10.1117/12.3045029

16 January 2025 Research on intrusion tolerance system based on behavioral baseline and defense-in-depth architecture

Qi Meng, Xuemeng Wang, Kai Yang, Long Meng, Jiancheng Wang, Jinlong Fei

Author Affiliations +

Proceedings Volume 13447, International Conference on Mechatronics and Intelligent Control (ICMIC 2024); 134471D (2025) https://doi.org/10.1117/12.3045029
Event: International Conference on Mechatronics and Intelligent Control (ICMIC 2024), 2024, Wuhan, China

Abstract

Tolerance technology is the third-generation network security technology commonly used in the world. It is derived from the category of information survival and endogenous security technology. A scholar from Carnegie Mellon University gave this survival technology a definition: the so-called "invasion survival technology." It is the ability of the system to perform its own tasks within a limited time when external attacks, failures and accidents have occurred. It assumes that we cannot detect intrusions to the system completely and correctly. When external intrusions or failures occur suddenly, we can use tolerance technology to solve the problem of survival of the system to ensure the confidentiality, integrity, and integrity of the information system. reliability and non-repudiation. In the current Internet security incidents, countless experiences and lessons tell us that it is not enough to rely on blocking and defensing for network security. Based on the existing network defense-in-depth architecture and the common behavior and parameter baselines of current emergency response systems, this paper designs an intrusion-tolerant system based on the behavioral baseline and network-in-depth architecture, which realizes intrusion tolerance and malicious behavior blocking under high confrontation intensity. To adapt to the maximum recovery and necessary tolerance under the attack technology of international APT organizations, and to protect the integrity and availability of the system to the greatest extent.

(2025) Published by SPIE. Downloading of the abstract is permitted for personal use only.

Citation Download Citation

Qi Meng, Xuemeng Wang, Kai Yang, Long Meng, Jiancheng Wang, and Jinlong Fei "Research on intrusion tolerance system based on behavioral baseline and defense-in-depth architecture", Proc. SPIE 13447, International Conference on Mechatronics and Intelligent Control (ICMIC 2024), 134471D (16 January 2025); https://doi.org/10.1117/12.3045029

ACCESS THE FULL ARTICLE

INSTITUTIONAL
Select your institution to access the SPIE Digital Library.

SELECT YOUR INSTITUTION

PERSONAL
Sign in with your SPIE account to access your personal subscriptions or to use specific features such as save to my library, sign up for alerts, save searches, etc.

PERSONAL SIGN IN

No SPIE Account? Create one

;

PURCHASE THIS CONTENT

SUBSCRIBE TO DIGITAL LIBRARY

50 downloads per 1-year subscription

Members: $195

Non-members: $335 ADD TO CART

25 downloads per 1 - year subscription

Members: $145

Non-members: $250 ADD TO CART

PURCHASE SINGLE ARTICLE

Includes PDF, HTML & Video, when available

Members: $17.00

Non-members: $21.00 ADD TO CART

PROCEEDINGS
13 PAGES

DOWNLOAD PAPER SAVE TO MY LIBRARY

GET CITATION

RIGHTS & PERMISSIONS

Get copyright permission Get copyright permission on Copyright Marketplace

KEYWORDS

Tolerancing

Databases

System integration

Network security

Information security

Defense technologies

Security technologies

Show All Keywords

Keywords/Phrases

Search In:

Publication Years