article: PC World, 22 June 2008, Limit Internet Attacks With Virtual Servers
Interesting concept of regularly replacing virtual servers to minimize the risk of server being online for extended periods. This would require someone probing the network to re-map their efforts continually.
The virtual servers could be rebuilt from images after being online handling transactions for just a short amount of time. Imagine trying to figure out what's happening on probed server that keeps changing OS and configuration every ten seconds.
Link to George Mason University's page: SCIT: Self Cleansing Intrusion Tolerance
"Carefully managed virtual servers can make the job of attackers more difficult by reducing the time that any one version of a server is exposed to the Internet, according to a George Mason University professor who has developed software that phases virtual servers in and out of use." (LINK)
Interesting concept of regularly replacing virtual servers to minimize the risk of server being online for extended periods. This would require someone probing the network to re-map their efforts continually.
The virtual servers could be rebuilt from images after being online handling transactions for just a short amount of time. Imagine trying to figure out what's happening on probed server that keeps changing OS and configuration every ten seconds.
"SCIT can further complicate the job of hackers by generating
replacement virtual servers that perform the same function from
different platforms. So the server being taken offline may have Linux
as an operating system and the one replacing it may have Windows. Or
one may be BIND DNS while the replacement is Microsoft DNS server. He
calls this strategy security by diversity." (LINK)
Link to George Mason University's page: SCIT: Self Cleansing Intrusion Tolerance
0 comments:
Post a Comment