Survivable Computer Systems

-

 Definition Of A Survivable Computer System —————————- A computer system, which may be made up of multiple individual systems and components, designed to provide mission-critical services must be able to perform in a consistent and timely manner under various operating conditions. It must be able to meet its goals and objectives whether it is in a state of normal operation or under some sort of stress or in a hostile environment. 

A discussion on survivable computer systems can be a very complex and far-reaching one. However, in this article, we will touch on just a few of the basics. Computer Security And Survivable Computer Systems ————————————————– Survivable computer systems and computer security are in many ways related but at a low-level very much different. For instance, the hardening of a particular system to be resistant to intelligent attacks may be a component of a survivable computer system. It does not address the ability of a computer system to fulfill its purpose when it is impacted by an event such as a deliberate attack, natural disaster or accident, or general failure. A survivable computer system must be able to adapt and perform its primary critical functions even if in a hostile environment, even if various components of the computer system are incapacitated. In some cases, even if the entire “primary” system has been destroyed. As an example; a system designed to provide real-time critical information regarding the analysis of specialized medications ceases to function for a few hours because of widespread loss of communication. However, it maintains the validity of the data when communication is restored and systems come back online. This computer system could be considered to have survived under conditions outside of its control. On the other hand, if the same system fails to provide continuous access to information under normal circumstances or operating environment, because of a localized failure, may not be judged to have fulfilled its purpose or met its objective. Fault Tolerant And Highly Availability Computer Systems —————————- Many computer systems are designed with fault-tolerant components so they continue to operate when key portions of the system fail. For instance; multiple power supplies, redundant disk drives or arrays, and even multiple processors and system boards that can continue to function even if their peer component is destroyed or fails. The probability of all components designed to be redundant failing at one time may be quite low. However, a malicious entity that knows how the redundant components are configured may be able to engineer critical failures across the board rendering the fault-tolerant components ineffective. High availability also plays a role in a survivable computer system. However, this design component may not maintain computer system survivability during certain events such as various forms of malicious attacks. An example of this might be a critical web service that has been duplicated, say across multiple machines, to allow continuous functionality if one or more of the individual web servers were to fail. The problem is that many implementations of high availability use the same components and methodology for all of the individual systems. If an intelligent attack or malicious event takes place and is directed at a specific set of vulnerabilities on one of the individual systems, it is reasonable to assume the remaining computer systems that participate in the highly available implementation are also susceptible to the same or similar vulnerabilities. A certain degree of variance must be achieved in how all systems participate in the highly available implementation. What’s The Difference Between An Attack, Failure, And Accident? How Do These Differences Impact A Survivable Computer System ———————————————————- In many cases when I am discussing the security of systems with customers, the question of business continuity and disaster recovery come up. Most companies that provide a service that they deem critical just know the system needs to be operational in a consistent manner. 

However, there is typically little discussion about the various events or scenarios surrounding this and that can lead to great disappointment in the future when what the customer thought was a “survivable computer system” does not meet their expectations. Some of the items I like to bring up during these conversations are what their computer systems' goals and objectives are, what specifically continuous operation means to them, and specifically what constitutes an attack, failure, or accident that can cause loss of operation or failure to meet objectives. A failure may be defined as a localized event that impacts the operation of a system and its ability to deliver services or meet its objectives. An example might be the failure of one or more critical or non-critical functions that affect the performance or overall operation of the system. Say, the failure of a module of code causes a cascading event that prevents redundant modules from performing properly. Or, a localized hardware failure that incapacitates the computer system. An accident is typically an event that is outside the control of the system and administrators of a local/private system. An example of this would be natural disasters such as hurricanes if you live in South Florida like I do, floods, or widespread loss of power because the utility provider cut the wrong power lines during an upgrade to the grid. About two years ago, a client of mine who provides web-based document management services could not deliver revenue-generating services to their customers because a telecommunications engineer cut through a major phone trunk six blocks away from their office. They lost phone and data services for nearly a week. And now we come to “attack”. We all know accidents will happen, we know that everything fails at one time or another, and typically we can speculate on how these things will happen. An attack, executed by an intelligent, experienced individual or group can be very hard to predict. There are many well-known and documented forms of attacks. The problem is intelligence and human imagination continuously advance the form of malicious attacks and can seriously threaten even the most advanced designed survivable computer systems. An accident or failure cannot think out of the box or realize that a highly available design is flawed because all participants use the same design. The probability that an attack might occur, and succeed may be quite low, but the impact may be devastating. Conclusion ———————————————– One of the reasons I wrote this article was to illustrate that it’s not all about prevention. Although prevention is a big part of survivable computer system design, a critical computer system must be able to meet its objectives even when operating under hostile or stressful circumstances. Or if the steps are taken for prevention ultimately prove inadequate. It may be impossible to think of all the various events that can impact a critical computer system but it is possible to reasonably define the possibilities. The subject of survivable computer systems is actually one of complexity and ever-evolving technology. This article has only touched on a few of the basic aspects of computer system survivability. I intend on continuing this article to delve deeper into the subject of survivable computer systems. You may reprint or publish this article free of charge as long as the bylines are included. Original URL (The Web version of the article) ———— http://www.defendingthenet.com/NewsLetters/WhatAreSurvivableComputerSystems.htm


Comments

Post a Comment

Popular posts from this blog

Vegan Eggs Benedict with Asparagus

-
Image
I prepared eggs benedict for you! If I do say so myself, the hollandaise sauce is considerably better without the eggs.  One of my favorite breakfast dishes is eggs benedict, and because Mother's Day (and my birthday!) are coming up, I knew I wanted to make a plant-based version of it at home that would be just as good as anything I could get at a restaurant.   There are a few steps in this recipe using different ingredients, but none of them are challenging or take a lot of time. The tofu slabs will first be marinated in a turmeric-black salt marinade that gives it an authentic egg flavor. If you're going to make tofu scrambles and other dishes like this frequently, you'll probably need to order black salt online, but it's definitely worth it. Any Benedict must have hollandaise sauce, but, to be really honest, I typically find it to be overly rich. Since too much hollandaise may completely dominate a dish, I frequently request it on the side so that I can add only the ...
Read more

Vegan Baked Oatmeal with Fresh Berries

-
Image
 A recipe for baked vegan oatmeal with delicious berries. The ideal nutritious breakfast that is filling and fantastic for serving large groups! This version is both gluten-free and vegan. Did I ever tell you about the time I consumed so much oatmeal in high school that I didn't consume any until almost 8 years later, after graduate school? It is real. From ninth through the eleventh school, I consumed one or two packets of quick oatmeal every day, and even now, I find the thought of instant oatmeal repulsive. Thankfully, cooked oatmeal does not make me feel the same way. If you've never tried baked oatmeal, then this is the recipe you've been waiting for. It's one of the few ways I'll eat oatmeal. Traditional oatmeal may be tasteless, gloppy, and bland. Oatmeal that has been baked is flavorful, sweet, and soft but chewy. I can't wait for you to try it too; it's my favorite (and almost always the only) way to eat oatmeal. Ingredients for baked vegan oats Th...
Read more

Win Every Scrabble Game

-
Image
Every Game of Scrabble: forevergeek.com  Ever found yourself staring at a set of tiles while playing Scrabble or Literati that you believe should make a bingo word (i.e., you should be able to utilize all seven of the words), but you simply can't seem to figure it out? Consider the word TNERKIH, which seems to have a nice balance of consonants and vowels and is likely to produce a bingo word. Let's look at some of the resources that can assist you in solving the challenge while you consider this group of letters. Shuffle, Shuffle Shuffle is one of the Scrabble strategies that most players suggest using. If you're having trouble thinking clearly when looking at a rack, shuffle a few tiles and then try again. If nothing comes to mind, shuffle a few more tiles . Scrabble: en.wikipedia.org Consonant and vowel balance in your tiles is a crucial consideration. Unless there are tiles on the board that you can use very successfully, you are probably out of luck if you have fewer th...
Read more