CuPIDS enhances StUPIDS: Exploring a Co-processing Paradigm Shift in Information System
Author
Paul D. Williams, Eugene H. Spafford
Tech report number
CERIAS TR 2005-44
Abstract
The CuPIDS project is an exploration of increasing information
system security by dedicating computational resources to system
security tasks in a shared resource, multi-processor (MP) architecture.
Our research explores ways in which this architecture offers
improvements over the traditional uni-processor (UP) model of
security. There are a number of areas to explore, one of which has a
protected application running on one processor in a symmetric
multiprocessing (SMP) system while a shadow process specific to that
application runs on a different processor, monitoring its activity,
ready to respond immediately if the application veers off course.
This paper describes initial work into defining such an architecture
and the prototype work done to validate our ideas.
Booktitle
Proceedings of the 2005 IEEE Information Assurance Workshop
Organization
2005 IEEE Workshop on Information Assurance
Publication Date
2005-06-25
Subject
Mult-processor-based intrusion detection and policy compliance verification