GERIS '16 March 7, 8, and 9, 2016 Binghamton University, Binghamton, NY
Abstract: Surviving Advanced Persistent Threats: A Framework and Analysis
Designing robust mission-critical systems demands bringing together fault tolerance and security. The emergence of advanced persistent threats (APT) has further added to the challenge of meeting mission assurance goals. Despite the advances in mission survivability, the existing solutions remain ineffective against APTs. In task we present a novel survivability framework against APTs in a distributed environment. It involves tamper-resistant and surreptitious detection and node-to-node verification of suspicious events. The solution aims to identify attacker intent, objectives and strategies (AIOS) and to design targeted recoveries that promote survivability. Its security strength has been theoretically analyzed, while the performance and scalability aspects are measured via simulation. Our simulations demonstrate high scalability with respect to network size and application runtime and the time overhead for long running applications can be easily kept under 1% of original runtime by carefully adjusting the security strength.
Shambhu J. Upadhyaya is Professor of Computer Science and Engineering at the State University of New York at Buffalo where he also directs the Center of Excellence in Information Systems Assurance Research and Education (CEISARE), designated by the National Security Agency (NSA) and the Department of Homeland Security (DHS). His research interests are information assurance, computer security, fault diagnosis, fault tolerant computing, and VLSI Testing. He has authored or coauthored about 270 articles in refereed journals and conferences in these areas. His current projects involve insider threat modeling, intrusion detection, security in wireless networks, and protection against Internet attacks. His research has been supported by the National Science Foundation, Rome Laboratory, the U.S. Air Force Office of Scientific Research, DARPA, NSA, IBM, Intel Corporation and Harris Corporation. He was recipient of Tan Chin Tuan (TCT) Exchange Fellow, Singapore, 2013, and Sustained Achievement Award UB Exceptional Scholars, 2013. He is a senior member of IEEE.