CS 448/548: Survivable Systems and Networks

Welcome to CS448/548 Survivable Systems and Networks. This course is offered in the Fall Semester 2006 at the University of Idaho. The course is taught by Dr. Axel Krings. The web site used the last time the course was taught can be viewed here, but be aware that each semester the format and material will change to reflect the dynamic behavior of the research area.

This web-page contains information about the course, e.g. syllabus, class notes, pointers to interesting places etc. Material can be down-loaded in pdf and/or postscript format, and will be made available in the updated form as the class goes on. If you have comments, please let me know.

The area of survivable systems and networks has received much attention by government and military initiatives, and notably for the general public by the President's Commission on Critical Infrastructure Protection and special issues of PBS's Frontline (e.g. Blackout). This course addresses this growing interest and deals with specific issues of computer and network survivability. Survivability goes beyond computer and network security or fault-tolerance. The range of threats to survivability that must be considered is enormous, including hardware malfunctions, software flaws, environmental hazards, and malicious and accidental human acts.

Course description: This course discusses issues of Survivability, Attributes of System Survivability, Trustworthiness, Dependability and Assurance, Threats to Survivability, Threats to Security, Threats to Reliability, Threats to Performance, Requirements and Their Interdependence, Systemic Inadequacies, Approaches for Overcoming Deficiencies, Evaluation Criteria, Attempts at Standardization, Architectures for Survivability, Implementing and Configuring for Survivability.

A wealth of literature has surfaced that deals with issues of system survivability. This class will be taught in several phases in which material will be presented by the instructor and literature will be reviewed by individual or groups of students. The results will be individual and group presentations as well as discussions of contemporary issues. The exact list of topics and class format is not final and a work in progress.

• Contact information:
  • Axel Krings (PhD), JEB 320,
  • Phone: 208-885-4078, fax: 208-885-9052.
  • Office Hours: (see here)
  • MWF 12:30-1:20 room GJ 116.
• Fall 2006 Term Class Handouts:
  • The handout numbers refer to the lecture in which the handout was made available. This does not necessarily mean that this material was covered in this particular lecture. (Most likely there is some overlap).
  • If there are any problems with accessing the handouts, please let me know (email, phone, smoke signs, drums, ...)!
  • Corrections: some slides may contain formatting errors, typos etc. which have been addressed in class, but have not been reflected in the notes posted here.
  • Course syllabus: to be discussed in class.
  • Lecture Notes:
    Note that we will stretch out the material of the first few classes in order to address background issues raised during the presentation of the papers. This will help especially students that have not taken computer security and fault-tolerant systems. However, please do not confuse handwaving with in-depth knowledge :-)
    • lecture 1 (08/21/06): (pdf) Introduction, [Reading assignment 1)]
    • lecture 2 (08/23/06): (pdf) Discussion Ellison paper
    • lecture 3 (08/25/06): (pdf) continuation of discussion from previous class, [Reading assignment 2)] [Start Reading assignment 3)]
    • lecture 4 (08/28/06): (pdf) Survivability Life Cycle
    • lecture 5 (08/30/06): (pdf) A Case Study in Survivable Network System Analysis
    • lecture 6 (09/01/06): (pdf) A Case Study in Survivable Network System Analysis (cont.)
    • lecture 7 (09/06/06): discussion, roll-play
    • lecture 8 (09/08/06): roll-play, [Reading Assignment 4)]
    • lecture 9 (09/11/06): (pdf) Dependability discussion
    • lecture 10 (09/13/06): Preparation for SSA project
    • lecture 11 (09/15/06): (pdf) Background on agreement algorithms and fault models
    • lecture 12 (09/18/06): (pdf) Agreement algorithms and fault models cont., [Reading assignment 6]
    • lecture 13 (09/18/06): (pdf) Dealing with Patterns
    • lecture 14 (09/20/06): no new handouts
    • lecture 15 (09/22/06): (pdf) Modeling background information, Markov chain basics. You might want to check out the Markov chain notes in the CS449 website
    • lecture 16 (09/25/06): SSA discussion
    • lecture 17 (09/27/06): (pdf) Markov Analysis of Software Specifications, [Reading assignment 7]
    • lecture 18 (09/29/06): (pdf) Systems under Attack [Reading assignment 9]
    • lecture 19 (10/02/06): catching up - no handouts
    • lecture 20 (10/04/06): Discussion on Markov Chains
    • lecture 21 (10/06/06): (pdf) Security Vulnerabilities
    • lecture 22 (10/09/06): (pdf) Incident Reports [Reading Assignment 10]
    • lecture 23 (10/11/06): Exam (open book - open notes)
    • lecture 24 (10/13/06): no new handouts
    • lecture 25 (10/16/06): (pdf) Scheduling Issues in Survivability Applications using Hybrid Fault Models [Reading Assignment 11]
    • lecture 26 (10/18/06): visitor: SSA discussion with client
    • lecture 27 (10/20/06): (pdf) An application of scheduling: Agent Survivability
    • lecture 28 (10/23/06): no new handouts
    • lecture 29 (10/25/06): (pdf) Survivable Storage: Part I: RAID
    • lecture 30 (10/27/06): SSA discussion
    • lecture 31 (10/30/06): catching up
    • lecture 32 (11/01/06): (pdf) Survivable Storage Part II: intro.
    • lecture 33 (11/03/06): (pdf) Survivable Storage Part II: cont.
    • lecture 34 (11/06/06): SSA discussion, survivable storage discussion continued.
    • lecture 35 (11/08/06): (pdf) Ports
    • lecture 36 (11/15/06): (pdf) Ports cont.
    • lecture 37 (11/17/06): (pdf) Probability Risk Assessment, fault tree analysis, reliability of systems
    • lecture 38 (11/20/06): (pdf) The problems with Risk Assessment
    • lecture 39 (11/22/06): (pdf) Risk Management or Risk Analysis?
    • lecture 40 (11/24/06): (pdf) Case Study: Firewall [Reading Assignment 16]
    • lecture 41 (11/27/06): (pdf) Quantifying Survivability, how to overcome the impact of unknown fail rates. [Reading Assignment 15]
    • lecture (12/01/06): Exam II
    • lecture 42 +: catching up
    • Optional Final: the time slot for this class (12/15/06): 7:30 - 9:30am. Location is our class room.
  • Reading Assignments (so far):
    • 1) (CMU-report-97tr013.pdf)
    • 2) (CMU-report-00tr013.pdf)
    Note that this includes the previous report. Our focus will be on the material starting with chapter 3.
    • 3) (CMU-report-98tr014.pdf)
    Note, this is an application of the SNA described in the previous reading assignment.
    • 4) (Fundamental Concepts of Dependability)
    • 5) (The Byzantine Generals Problem )
    by Leslie Lamport, Robert Shostak and Marshall Pease, ACM Transactions on Programming Languages and Systems, Volume 4, Issue 3, (July 1982). This paper is mainly for students that have not take CS449/549 and will bring them up to speed on topics related to fault models. We will discuss their limitations in hostile environments later.
    • 6) (Towards a Rigorous Definition of Information System Survivability)
    • 7) [Whi93] Whittaker James A., and J.H. Poore, Markov Analysis of Software Specifications, ACM Transactions on Software Engineering and Methodology, Vol.2, No.1, January 1993, pp. 93-106. (get from web)
    • 8) [Allen 2000] Allen, et.al., "State of the Practice of Intrusion Detection Technologies", Technical Report , CMU/SEI-99-TR-028, ESC-99-028, January 2000. (pdf)
    Note that this includes the previous report. Our focus will be on the material starting with chapter 3.
    • 9) A Two-Layer Approach to Survivability of Networked Computing Systems (pdf)
    • 10) Computer Security in Aviation: Vulnerabilities, Threats, and Risks (thml)
    • 11) Scheduling Issues in Survivability Applications using Hybrid Fault Models (pdf)
    • 12) Patterson, D.A., et. al., A Case for Redundant Arrays of Inexpensive Disks (RAID), ACM SIGMOD Records, International Conference on Management of Data, Vol.~17, No.~3, pp.~109-116, June~1988
    • 13) Survivable Storage, CMU Tech. Report CMU-CS-01-120.
    • 14) (SCADA Case Study).
    • 15) A General Framework for Network Survivability Quantification
    • 16) Case Study: Firewall
  • Assignments (so far):
    • to be discussed in class
  • Pointers to Research:
    • need to be cleaned up :-)
    • DDoS issues
      • Consensus Roadmap of defeating DDoS attacks.
      • CERT: TCP SYN Flooding and IP Spoofing Attacks,
      • Strategies to Protect Against TCP SYN DoS Attacks .
      • DoS using trin00 & Tribe Flood Network programs
    • Peter Neumann
      • Practical Architectures for Survivable Systems and Networks (Neumann Report) (don't print this out, it is very large)
      • final class notes (ps), earlier class notes (html),
      • Inside Risks,
      • Computer-Related Risks: New Material,
      • The Risks Digest,
      • Illustrative Risks,
    • Survivability Groups/Projects
      • CMU SEI Survivability
      • T1A1.2 Working Group
      • Survivable Computing (FSU)
    • Critical Infrastructure Protection
      • President's Commission on Critical Infrastructure Protection,
      • Virginia slides (John Knight et.al.), Lake Tahoe meeting 1997
    • Groups/Reporting/Advisories:
      • CERT Coordination Center
      • National Infrastructure Protection Center (NIPC)
      • CERT/CC Advisories 1988-2000
      • SANS
      • Security Vulnerabilities
      • Virginia
      • SecurePoint Bug Traq
      • SecurityFocus
      • Renater-CERT
    • Interesting Links
      • secinf.net.
      • Information Assurance & Survivability.
      • DARPA ITO
      • (DISCEX) DARPA Information Survivability Conference and Exposition (2001).
      • MITRE Information Assurance.
      • Some IDS Projects/Sources: Michael Sobirey's IDS page, COAST Purdue, COAST IDS, EMERALD, Computer Immune Systems, S.J. Stolfo, misc papers,
      • LINKS - Resources for Survivable Systems.
      • Firewalls:  Purdue
      • PASIS Survivable Storage
    • (My) General Pointers to Research Areas,

  Back to my homepage