CS 448/548: Survivable Systems and Networks

Welcome to CS448/548 Survivable Systems and Networks. This course is offered in the Spring Semester 2004 at the University of Idaho. The course is taught by Dr. Axel Krings. Last semester's web site can be viewed here, but be aware that this semester the format and material will change to reflect the dynamic behavior of the research area.

This web-page contains information about the course, e.g. syllabus, class notes, pointers to interesting places etc. Material can be down-loaded in pdf and/or postscript format, and will be made available in the updated form as the class goes on. If you have comments, please let me know.

The area of survivable systems and networks has received much attention by government and military initiatives, such as the President's Commission on Critical Infrastructure Protection, or many workshops and conference tracks, such as the Information Survivability Workshop, and workshops associated with the DSN. This course addresses this growing interest and deals with specific issues of computer and network survivability. Survivability goes beyond computer and network security or fault-tolerance. The range of threats to survivability that must be considered is enormous, including hardware malfunctions, software flaws, environmental hazards, and malicious and accidental human acts.

Course description: This course discusses issues of Survivability, Attributes of System Survivability, Trustworthiness, Dependability and Assurance, Threats to Survivability, Threats to Security, Threats to Reliability, Threats to Performance, Requirements and Their Interdependence, Systemic Inadequacies, Approaches for Overcoming Deficiencies, Evaluation Criteria, Attempts at Standardization, Architectures for Survivability, Implementing and Configuring for Survivability.

A wealth of literature has surfaced that deals with issues of system survivability. This class will be taught in several phases in which material will be presented by the instructor and literature will be reviewed by individual or groups of students. The results will be individual and group presentations as well as discussions of contemporary issues. The exact list of topics and class format is not final and a work in progress.

• Contact information:
  • Axel Krings (PhD), JEB 320,
  • Phone: 208-885-4078, fax: 208-885-9052.
  • Office Hours: (see here)
  • MWF 12:30-1:20 room GJ 116.
• ENSIMAG Class Material

• Spring 2004 Term Class Handouts:
  • The handout numbers refer to the lecture in which the handout was made available. This does not necessarily mean that this material was covered in this particular lecture. (Most likely there is some overlap).
  • If there are any problems with accessing the handouts, please let me know (email, phone, smoke signs, drums, ...)!
  • Corrections: some slides may contain formatting errors, typos etc. which have been addressed in class, but have not been reflected in the notes posted here.
  • WARNING LOCAL STUDENTS: Do not send pdf files (i.e. files in pdf format) to the printer! Pdf files are binary files and printing them "directly" will result in a big printer mess!!! There are 2 ways to look at or print the pdf notes:
    • Save the file and use acroread to open it. Then from within acroread use the print option.
    • Better: update your browser to use pdf files. For example, in Netscape 4.7 you need to go to "edit - preferences", then expand "Navigator" and click "Application". Next click "New" and fill in the following: Description: acroread, MIMEType: application/pdf, Suffixes: pdf. Then click on "application" and enter: /usr/local/bin/acroread %s
    • Now "OK" out of it and it should work.
  • Course syllabus: to be discussed in class.
  • Lecture Notes:
    Note that we will stretch out the material of the first few classes in order to address background issues raised during the presentation of the papers. This will help especially students that have not taken computer security and fault-tolerant systems. However, please do not confuse handwaving with in-depth knowledge :-)
    • lecture 1 (01/14/04): (pdf) Introduction, [Reading assignment 1)]
    • lecture 2 (01/16/04): (pdf) Introduction cont. [Reading assignment 2)]
    • lecture 3 (01/21/04): (pdf) Introduction cont. [Reading assignment 3), Section 3]
    • lecture 4 (01/23/04): (pdf) Survivability Life Cycle
    • lecture 5 (01/26/04): class cancelled
    • lecture 6 (01/28/04): catching up, [Reading assignment 4]
    • lecture 7 (01/30/04): (pdf) A Case Study in Survivable Network System Analysis
    • lecture 8 (02/02/04): (pdf) A Case Study in Survivable Network System Analysis (cont.)
    • lecture 9 (02/04/04): (pdf) Dependability and Survivability Definitions, [Reading assignment 5]
    • lecture 10 (02/06/04): continuation of previous topic
    • lecture 11 (02/09/04): Project I: SSA (preproposal)
    • lecture 12 (02/11/04): Dependability discussions
    • lecture 13 (02/13/04): (pdf) Fault-tolerant Agreement basics
    • no lecture (02/16/04): Presidents Day
    • lecture 14 (02/18/04): (pdf) Detecting Patterns
    • lecture 15 (02/20/04): (pdf) Markov Model review + more, also see lecture notes of CS449/549 Fault-Tolerant Systems' class (lecture 10,11)
    • lecture 16 (02/23/04): (pdf) Usage Patterns [Reading assignment 6]
    • lecture 17 (02/25/04): (pdf) Attack recognition and recovery [Reading assignment 7]
    • lecture 18 (02/27/04): no handouts
    • lecture 19 (03/01/04): (pdf) Security Vulnerabilities (Chapter 3 of Computer Related Risks book by Peter Neumann)
    • lecture 20 (03/03/04): (pdf) Risk Digest, Redundancy, Fault-models, [Reading assignment 8]
    • lecture 21 (03/05/04): no handouts
    • lecture 22 (03/08/04): Discussion: Challenges of using Redundancy
    • lecture 23 (03/10/04): EXAM I
    • lecture 24 (03/12/04): (pdf) Scheduling issues
    • (03/15/04 - 03/19/04): Spring Break
    • lecture 25 (03/22/04): (pdf) Brief EXAM I discussion, Application: Scheduling and Agreement. (Draft of the paper is in the publication section on the web).
    • lecture 26 (03/24/04): (pdf) Survivability Application: Scheduling and Mobile Agents. (Draft of the paper is in the publication section on the web).
    • lecture 27 (03/26/04): Status on SSA project. No handouts.
    • lecture 28 (03/29/04): (pdf) Introduction to Survivable Storage
    • lecture 29 (03/31/04): (pdf) Survivable Storage
    • lecture 30 (04/02/04): (pdf) Survivable Storage cont.
    • lecture 31 (04/05/04): no handouts
    • lecture 32 (04/07/04): (pdf) Transport Layer issues
    • lecture 33 (04/09/04): (pdf) Ports & Trojans
    • lecture 34 (04/12/04): no handouts
    • lecture 35 (04/14/04): (pdf) Introduction to Probability Risk Assessment (Suppl. slides from CS449 lecture 5,6 and 7 -- I will use this superset of slides for the lecture. The notes for lecture represent the main concept, but do not include the derivations).
    • lecture 36 (04/16/04): no handouts
    • lecture 37 (04/19/04): class cancelled
    • lecture 38 (04/21/04): (pdf) Problems with risk based approaches
    • lecture 39 (04/23/04): (pdf) Risk Management and Risk Analysis, Case Study: [Reading assignment 13]
    • lecture 40 (04/26/04): (pdf) Case Study: [Reading assignment 14]
    • lecture 41 (04/28/04): Cont. of material. Also: Discussion about take home exam, optional exam and grading policy modifications to reflect optional exam
    • lecture 42 (04/30/04): EXAM III (pdf)
    • lecture 43 (05/03/04): tba
    • lecture 44 (05/05/04): tba
    • lecture 45 (05/07/04): tba
  • Reading Assignments (so far):
    • 1) (CMU-report-97tr013.pdf)
    • 2) (The Byzantine Generals Problem )
    by Leslie Lamport, Robert Shostak and Marshall Pease, ACM Transactions on Programming Languages and Systems, Volume 4, Issue 3, (July 1982). This paper is mainly for students that have not take CS449/549 and will bring them up to speed on topics related to fault models. We will discuss their limitations in hostile environments later. Get an early start!
    • 3) (CMU-report-00tr013.pdf)
    Note that this includes the previous report. Our focus will be on the material starting with chapter 3.
    • 4) (CMU-report-98tr014.pdf)
    Note, this is an application of the SNA described in the previous reading assignment.
    • 5) (Fundamental Concepts of Dependability)
    • 6) [Whi93] Whittaker James A., and J.H. Poore, Markov Analysis of Software Specifications, ACM Transactions on Software Engineering and Methodology, Vol.2, No.1, January 1993, pp. 93-106.
    • 7) A Two-Layer Approach to Survivability of Networked Computing Systems, (pdf)
    • 8) Computer Security in Aviation: Vulnerabilities, Threats, and Risks, by Peter Neumann,
    • 9) Paper for lecture 25 (Scheduling & Agreement)
    • 10) Paper for lecture 26 (Scheduling & Survivable Agents)
    • 11) Paper for lecture 28 (RAID)
    • 12) Paper for lecture 29 (Survivable Storage)
    • 13) (SCADA Case Study).
    • 14) Case Study: Firewall (pdf)
  • Assignments (so far):
    • to be discussed in class
  • Pointers to Research:
    • DDoS issues
      • Consensus Roadmap of defeating DDoS attacks.
      • CERT: TCP SYN Flooding and IP Spoofing Attacks,
      • Strategies to Protect Against TCP SYN DoS Attacks .
      • DoS using trin00 & Tribe Flood Network programs
    • Peter Neumann
      • Practical Architectures for Survivable Systems and Networks (Neumann Report) (don't print this out, it is very large)
      • final class notes (ps), earlier class notes (html),
      • Inside Risks,
      • Computer-Related Risks: New Material,
      • The Risks Digest,
      • Illustrative Risks,
    • Survivability Groups/Projects
      • CMU SEI Survivability
      • T1A1.2 Working Group
      • Survivable Computing (FSU)
    • Critical Infrastructure Protection
      • President's Commission on Critical Infrastructure Protection,
      • Virginia slides (John Knight et.al.), Lake Tahoe meeting 1997
    • Groups/Reporting/Advisories:
      • CERT Coordination Center
      • National Infrastructure Protection Center (NIPC)
      • CERT/CC Advisories 1988-2000
      • SANS
      • Security Vulnerabilities
      • Virginia
      • SecurePoint Bug Traq
      • SecurityFocus
      • Renater-CERT
    • Interesting Links
      • secinf.net.
      • Information Assurance & Survivability.
      • DARPA ITO
      • (DISCEX) DARPA Information Survivability Conference and Exposition (2001).
      • MITRE Information Assurance.
      • Some IDS Projects/Sources: Michael Sobirey's IDS page, COAST Purdue, COAST IDS, EMERALD, Computer Immune Systems, S.J. Stolfo, misc papers,
      • LINKS - Resources for Survivable Systems.
      • Firewalls:  Purdue
      • PASIS Survivable Storage
    • (My) General Pointers to Research Areas,

  Back to my homepage