The Starfish System

Starfish is a new system currently under development that provides intrusion detection and intrusion tolerance for middleware applications operating in a distributed asynchronous system. The Starfish system contains a central, highly secure and tightly coupled core. This core is augmented by "arms" that are less tightly coupled and that have less stringent security guarantees, each of which can be removed from the core if a significant security breach occurs. New arms can be "grown" as needed. One of Starfish's objectives is proactive survivability, where we utilize readily available system information to contain the spread of malicious faults. We employ epidemiological mechanisms, such as vaccination, to increase the resistance of the system to future attacks. Starfish is aimed at supporting distributed applications, such as Web Services, that must tolerate partitions, and that must continue to sustain survivability, in the presence of faults and malicious attacks.

SPONSORS

• Center for Computer and Communications Security (CyLab), Carnegie Mellon University

RESEARCHERS

• Priya Narasimhan (faculty, CMU)
• Kim P. Kihlstrom (faculty, Westmont College)
• Rajeev Gandhi (faculty, CMU)
• Michael G. Merideth (PhD student, CMU)
• Sonya Johnson (MS/PhD student, CMU)
• Andrew Williams (MS student, CMU)

PUBLICATIONS

• Thema: Byzantine-Fault-Tolerant Middleware for Web-Service Applications
  M. G. Merideth, A. Iyengar, T. Mikalsen, S. Tai, I. Rouvellou, P. Narasimhan, IEEE Symposium on Reliable Distributed Systems, Orlando, FL, October 2005 (to appear)
  
• Retrofitting Networked Applications to Add Autonomic Reconfiguration
  M. G. Merideth and P. Narasimhan, ICSE 2005 Workshop on Design and Evolution of Autonomic Application Software (DEAS 2005), St. Louis, MO, May 2005
  
• Elephant: Network Intrusion Detection Systems that Don't Forget
  M. G. Merideth and P. Narasimhan, Hawaii International Conference on System Sciences, Big Island, HI, January 2005
  
• Proactive Containment of Malice in Survivable Distributed Systems
  M. G. Merideth and P. Narasimhan, International Conference on Security and Management, Las Vegas, NV, June 2003
• Enhancing Survivability with Proactive Fault-Containment
  M. G. Merideth, Student Forum, IEEE Conference on Dependable Systems and Networks, San Francisco, CA, June 2003
• Metrics for the Evaluation of Proactive and Reactive Survivability
  M. G. Merideth and P. Narasimhan, Fast Abstracts Session, IEEE Conference on Dependable Systems and Networks, San Francisco, CA, June 2003
• The Starfish System: Providing Intrusion Detection and Intrusion Tolerance for Middleware Systems
  K. P. Kihlstrom and P. Narasimhan, IEEE Workshop on Object-oriented Real-time Dependable Systems, Guadalajara, Mexico, January 2003
• Developing Secure Reliable Infrastructures for Web Services
  P. Narasimhan, Fast Abstracts Session, IEEE Conference on Dependable Systems and Networks, Washington, D.C., June 2002