A cyber-resilient architecture for critical security services. (March 2016)
- Record Type:
- Journal Article
- Title:
- A cyber-resilient architecture for critical security services. (March 2016)
- Main Title:
- A cyber-resilient architecture for critical security services
- Authors:
- Kreutz, Diego
Malichevskyy, Oleksandr
Feitosa, Eduardo
Cunha, Hugo
da Rosa Righi, Rodrigo
de Macedo, Douglas D.J. - Abstract:
- Abstract: Authentication and authorization are two of the most important services for any IT infrastructure. Taking into account the current state of affairs of cyber warfare, the security and dependability of such services is a first class priority. For instance, the correct and continuous operation of identity providers (e.g., OpenID) and authentication, authorization and accounting services (e.g., RADIUS) is essential for all sorts of systems and infrastructures. As a step towards this direction, we introduce a functional architecture and system design artifacts for prototyping fault- and intrusion-tolerant identification and authentication services. The feasibility and applicability of the proposed elements are evaluated through two distinct prototypes. Our findings indicate that building and deploying resilient and reliable critical services is an achievable goal through a set of system design artifacts based on well-established concepts in the fields of security and dependability. Additionally, we provide an extensive evaluation of both resilient RADIUS (R-RADIUS) and OpenID (R-OpenID) prototypes. We show that our solution makes services resilient against attacks without affecting their correct operation. Our results also pinpoint that the prototypes are capable of meeting the needs of small to large-scale systems (e.g., IT infrastructures with 800k to 10M users).
- Is Part Of:
- Journal of network and computer applications. Volume 63(2016)
- Journal:
- Journal of network and computer applications
- Issue:
- Volume 63(2016)
- Issue Display:
- Volume 63, Issue 2016 (2016)
- Year:
- 2016
- Volume:
- 63
- Issue:
- 2016
- Issue Sort Value:
- 2016-0063-2016-0000
- Page Start:
- 173
- Page End:
- 189
- Publication Date:
- 2016-03
- Subjects:
- Cyber resiliency -- Cyber security -- System design -- Fault and intrusion tolerance -- Identification and authentication services -- Network access control
Microcomputers -- Periodicals
Computer networks -- Periodicals
Application software -- Periodicals
Micro-ordinateurs -- Périodiques
Réseaux d'ordinateurs -- Périodiques
Logiciels d'application -- Périodiques
Application software
Computer networks
Microcomputers
Periodicals
004.05
004 - Journal URLs:
- http://www.sciencedirect.com/science/journal/10848045 ↗
http://www.elsevier.com/journals ↗ - DOI:
- 10.1016/j.jnca.2015.09.014 ↗
- Languages:
- English
- ISSNs:
- 1084-8045
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 5021.410600
British Library DSC - BLDSS-3PM
British Library HMNTS - ELD Digital store - Ingest File:
- 8029.xml