Building Intrusion Tolerant Software System

In this paper, we describe and analyze the hypothesis about intrusion tolerance software system, so that it can provide an intended server capability and deal with the impacts caused by the intruder exploiting the inherent security vulnerabilities. We present some intrusion tolerance technology by exploiting N-version module threshold method in con-structing multilevel secure software architecture, by detecting with hash value, by placing an ““““““““antigen““““““““ word next to the return address on the stack that is similar to human immune system, and by adding ““““““““Honey code““““““““ nonfunctional code to disturb intruder, so that the security and the availability of the software system are ensured.

Building intrusion tolerant software system

In this paper, we describe and analyze the hypothesis about intrusion tolerance software system, so that it can provide an intended server capability and deal with the impacts caused by the intruder exploiting the inherent security vulnerabilities. We present some intrusion tolerance technology by exploitingN-version module threshold method in constructing multilevel secure software architecture, by detecting with hash value, by placing an “antigen” word next to the return address on the stack that is similar to human immune system, and by adding “Honey code” nonfunctional code to disturb intruder, so that the security and the availability of the software system are ensured. Foundation item: Supported by the National Natural Science Foundiation of China (90104005, 60373087, 60473023), the Ph. D Programs Foundation of Ministry of Education of China (20020486046) Biography: PENG Wen-ling (1969-), male, Associate professor, Ph. D candidate, research direction: network security, network management.