Quantitative Framework to Design Services with Intrusion Tolerant QoS




Nguyen, Quyen Luong

Journal Title

Journal ISSN

Volume Title



Large software systems can be designed as a set of loosely coupled services interacting with each other; simple services can be composed to form more complex services. But, for services to be usable in production, they must satisfy non-functional requirements, especially security-related quality of service in order to ensure confidentiality, integrity, and availability. Unfortunately, software vulnerabilities expose these services to malicious actors, and make them susceptible to attacks. Due to the distributed and decentralized nature of services, publishing and guaranteeing security quality of service are crucial so that potential applications and clients can make use of the provided services. On the other hand, intrusion prevention and detection are not perfect in securing services, due to the increased sophistication of malicious attacks. This has motivated the addition of the Intrusion Tolerant component to complement the line of defense for applications and services. Given the need of making services intrusion-tolerant, my research focuses on providing an Quantitative Framework for Intrusion Tolerant Services (QFITS) for a systematic and quantitative approach to model, design and implement services with Intrusion Tolerant Quality of Service (IT-QoS). The approach relies on: a) the foundation of the architecture of Self Cleansing Intrusion Tolerance; b) a correlation component for which I will use Semi-Markov Model to compute IT-QoS metrics and then prove that there exists a mathematical dependency between those metrics and intrusion tolerance control parameters such as the exposure window in the case of a recovery-based architecture; c) a software specification mechanism which is based on a proposed Unified Modeling Language profile that allows software architects to model IT-QoS for services. To system architects of service providers, the framework would also constitute as the basis for ensuring differentiated levels of certain IT-QoS metrics such as Secure Availability, and Mean Time To Security Failure (MTTSF), which are indicators the reliability of a service operating in the presence of cybersecurity attacks.



Computer science, Attack Surface, Intrusion tolerance, IT-QoS, SCIT, Semi-Markov