Title:
Towards Self-Healing Systems: Re-establishing Trust in Compromised Systems
Towards Self-Healing Systems: Re-establishing Trust in Compromised Systems
| dc.contributor.advisor | Owen, Henry L., III | |
| dc.contributor.author | Grizzard, Julian B. | en_US |
| dc.contributor.committeeMember | Copeland, John | |
| dc.contributor.committeeMember | Schimmel, David | |
| dc.contributor.committeeMember | Schwan, Karsten | |
| dc.contributor.committeeMember | Wills, Linda | |
| dc.contributor.department | Electrical and Computer Engineering | en_US |
| dc.date.accessioned | 2006-06-09T18:19:14Z | |
| dc.date.available | 2006-06-09T18:19:14Z | |
| dc.date.issued | 2006-04-10 | en_US |
| dc.description.abstract | Computer systems are subject to a range of attacks that can compromise their intended operations. Conventional wisdom states that once a system has been compromised, the only way to recover is to format and reinstall. In this work, we present methods to automatically recover or self-heal from a compromise. We term the system an intrusion recovery system. The design consists of a layered architecture in which the production system and intrusion recovery system run in separate isolated virtual machines. The intrusion recovery system monitors the integrity of the production system and repairs state if a compromise is detected. A method is introduced to track the dynamic control flow graph of the production system guest kernel. A prototype of the system was built and tested against a suite of rootkit attacks. The system was able to recover from all attacks at a cost of about a 30% performance penalty. | en_US |
| dc.description.degree | Ph.D. | en_US |
| dc.format.extent | 837686 bytes | |
| dc.format.mimetype | application/pdf | |
| dc.identifier.uri | http://hdl.handle.net/1853/10519 | |
| dc.language.iso | en_US | |
| dc.publisher | Georgia Institute of Technology | en_US |
| dc.subject | Virtual machine | en_US |
| dc.subject | End-user security | |
| dc.subject | Intrusion detection | |
| dc.subject | Intrusion recovery | |
| dc.subject | Rootkits | |
| dc.title | Towards Self-Healing Systems: Re-establishing Trust in Compromised Systems | en_US |
| dc.type | Text | |
| dc.type.genre | Dissertation | |
| dspace.entity.type | Publication | |
| local.contributor.advisor | Owen, Henry L., III | |
| local.contributor.corporatename | School of Electrical and Computer Engineering | |
| local.contributor.corporatename | College of Engineering | |
| relation.isAdvisorOfPublication | d3983de1-d725-47f4-b653-a318b39d8fd9 | |
| relation.isOrgUnitOfPublication | 5b7adef2-447c-4270-b9fc-846bd76f80f2 | |
| relation.isOrgUnitOfPublication | 7c022d60-21d5-497c-b552-95e489a06569 |
Files
Original bundle
1 - 1 of 1
- Name:
- grizzard_julian_b_200605_phd.pdf
- Size:
- 818.05 KB
- Format:
- Adobe Portable Document Format
- Description: