| HAL-Inria | Publications, software ... of Inria's scientists |
Conference papers
Intrusion Survivability for Commodity Operating Systems and Services: A Work in Progress
Abstract : This paper presents a work-in-progress of our approach for intrusion survivability in commodity operating systems. Our approach relies on an orchestration of recovery and mitigation actions. We rollback infected services (i.e., their processes) and infected files to a previous known safe state, and we apply per-service mitigations (i.e., privileges removal) before unfreezing the restored processes. Such approach effectively puts the previously compromised service into a degraded mode, allowing the system to withstand ongoing intrusions and ensures the availability of core functions to the users. A prototype for Linux-based systems is currently in development.
Cited literature [17 references]
https://hal.inria.fr/hal-02280376
Contributor : Ronny Chevalier <>
Submitted on : Friday, September 6, 2019 - 11:56:48 AM
Last modification on : Wednesday, June 24, 2020 - 4:19:48 PM
Document(s) archivé(s) le : Thursday, February 6, 2020 - 9:34:32 PM
Contributor : Ronny Chevalier <>
Submitted on : Friday, September 6, 2019 - 11:56:48 AM
Last modification on : Wednesday, June 24, 2020 - 4:19:48 PM
Document(s) archivé(s) le : Thursday, February 6, 2020 - 9:34:32 PM
File
intrusion-survivability-WIP.pd...
Files produced by the author(s)