search menu icon-carat-right cmu-wordmark

Foundations for Survivable System Development: Service Traces, Intrusion Traces, and Evaluation Models

Technical Report
This 2001 paper describes initial work in the foundations stage for survivability specification and intrusion specification, as well as survivability evaluation models that draw upon both of these areas.
Publisher

Software Engineering Institute

CMU/SEI Report Number
CMU/SEI-2001-TR-029
DOI (Digital Object Identifier)
10.1184/R1/6573896.v1

Abstract

Survivability is a new branch of dependability. It addresses explicit requirements for restricted modes of operation that preserve mission-critical essential services in adverse operational environments.

A survivable system is one that satisfies its survivability specification of essential services and adverse environments. On the system side, survivability specifications can be defined by essential-service traces that map essential-service workflows, derived from user requirements, into system component dependencies and required survivability attributes. On the environment side, survivability specifications can be defined by intrusion traces that map intruder workflows derived from attack patterns into compromisable system components. Survivability design applies resistance, recognition, and recovery strategies to maintain essential service workflows where possible despite compromised components. Test environments for survivable system implementations can be defined by survivability evaluation models that merge essential service and intruder workflows into usage-based, statistically valid test suites. This paper describes the initial results of research in these areas.

Cite This Technical Report

Linger, R., & Moore, A. (2001, October 1). Foundations for Survivable System Development: Service Traces, Intrusion Traces, and Evaluation Models. (Technical Report CMU/SEI-2001-TR-029). Retrieved February 21, 2024, from https://doi.org/10.1184/R1/6573896.v1.

@techreport{linger_2001,
author={Linger, Richard and Moore, Andrew},
title={Foundations for Survivable System Development: Service Traces, Intrusion Traces, and Evaluation Models},
month={Oct},
year={2001},
number={CMU/SEI-2001-TR-029},
howpublished={Carnegie Mellon University, Software Engineering Institute's Digital Library},
url={https://doi.org/10.1184/R1/6573896.v1},
note={Accessed: 2024-Feb-21}
}

Linger, Richard, and Andrew Moore. "Foundations for Survivable System Development: Service Traces, Intrusion Traces, and Evaluation Models." (CMU/SEI-2001-TR-029). Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, October 1, 2001. https://doi.org/10.1184/R1/6573896.v1.

R. Linger, and A. Moore, "Foundations for Survivable System Development: Service Traces, Intrusion Traces, and Evaluation Models," Carnegie Mellon University, Software Engineering Institute's Digital Library. Software Engineering Institute, Technical Report CMU/SEI-2001-TR-029, 1-Oct-2001 [Online]. Available: https://doi.org/10.1184/R1/6573896.v1. [Accessed: 21-Feb-2024].

Linger, Richard, and Andrew Moore. "Foundations for Survivable System Development: Service Traces, Intrusion Traces, and Evaluation Models." (Technical Report CMU/SEI-2001-TR-029). Carnegie Mellon University, Software Engineering Institute's Digital Library, Software Engineering Institute, 1 Oct. 2001. https://doi.org/10.1184/R1/6573896.v1. Accessed 21 Feb. 2024.

Linger, Richard; & Moore, Andrew. Foundations for Survivable System Development: Service Traces, Intrusion Traces, and Evaluation Models. CMU/SEI-2001-TR-029. Software Engineering Institute. 2001. https://doi.org/10.1184/R1/6573896.v1