TY - JOUR T1 - An architecture for adaptive intrusion-tolerant applications JF - Software: Practice and Experience Y1 - 2006 A1 - Pal,Partha A1 - Rubel,Paul A1 - Atighetchi,Michael A1 - Webber,Franklin A1 - Sanders,William H. A1 - Seri,Mouna A1 - Ramasamy,HariGovind A1 - Lyons,James A1 - Courtney,Tod A1 - Agbaria,Adnan A1 - Michel Cukier A1 - Gossett,Jeanna A1 - Keidar,Idit KW - adaptive defense KW - adaptive middleware KW - Byzantine fault tolerance KW - intrusion tolerance KW - redundancy KW - survivability architecture AB - Applications that are part of a mission-critical information system need to maintain a usable level of key services through ongoing cyber-attacks. In addition to the well-publicized denial of service (DoS) attacks, these networked and distributed applications are increasingly threatened by sophisticated attacks that attempt to corrupt system components and violate service integrity. While various approaches have been explored to deal with DoS attacks, corruption-inducing attacks remain largely unaddressed. We have developed a collection of mechanisms based on redundancy, Byzantine fault tolerance, and adaptive middleware that help distributed, object-based applications tolerate corruption-inducing attacks. In this paper, we present the ITUA architecture, which integrates these mechanisms in a framework for auto-adaptive intrusion-tolerant systems, and we describe our experience in using the technology to defend a critical application that is part of a larger avionics system as an example. We also motivate the adaptive responses that are key to intrusion tolerance, and explain the use of the ITUA architecture to support them in an architectural framework. Copyright © 2006 John Wiley & Sons, Ltd. VL - 36 SN - 1097-024X UR - http://onlinelibrary.wiley.com/doi/10.1002/spe.747/abstract CP - 11-12 M3 - 10.1002/spe.747 ER -