On the Effects of Finite Memory on Intrusion-Tolerant Systems

Intrusion tolerance has been proposed as a new paradigm for computer systems security. The idea is to apply the fault tolerance paradigm in the domain of systems security, accepting that malicious faults (attacks, intrusions) can never be entirely prevented, and that highly resilient systems have to tolerate these faults. Research in this area has produced a set of clever Intrusion-Tolerant protocols and systems (I/T protocols and I/T systems for short). However, the authors believe that an issue has been overlooked: that server have finite memory, so the number of messages that can be stored in their buffers is limited. Intuitively, this can be a problem in systems in which there are many messages being exchanged.