Jump to content
eugenenelson

New approach and pattern for system reliability and security

Recommended Posts

The current approach to Cyber security is usually about one computer and a response to a newly discovered vulnerability. This approach has led to the current Cyber security crisis.

 

A new approach and pattern views a system as many computers working together. A basic assumption is that a computer within a system will become infected.

 

The requirements for such a system are:

 

- Work and bulk data should be protected from an infected system component.

 

- Work and bulk data should be replicated on multiple computers to maximize reliability.

 

- A system should seamlessly recover from or avoid failure situations.

 

One solution approach is for system programs to use an infrastructure for client to server access and to exchange messages. A client and server check point work recovery information along with exchanged messages. The work and client to server communication of a failed client or server can be recovered by the same kind of program running on a different computer. A server knows the identity of a client and what work a client is authorized to request. A server validates that a client request is permitted before performing work. If a client request is not permitted then the client system can be isolated and repaired.

 

This approach and pattern can be used to improve system reliability and security. The software community needs to evaluate this approach and possible infrastructures that help programs within a system to achieve this pattern.

 

Question to forum administrator: Is there a more appropriate forum to post this topic?

Share this post


Link to post
Share on other sites

Good afternoon!

 

I think there's a lot of merit in your suggestion. The adversaries have certainly figured out how to leverage multiple endpoints working as a large infrastructure. What might be the next steps to identify specific outcomes that would lead to your solution?

 

BTW - I don't think there's a particular forum for this. Many of the others deal with specific elements of the Cybersecurity Framework, and I agree with you that this is a topic of general interest.

 

Have a great day!

Greg

 

Share this post


Link to post
Share on other sites

Greg,

 

I have been working on an infrastructure for a number of years. The infrastructure is now ready for review and improvement. A working group of interested individuals is needed. I have contacted the INCOSE security working group in the hope of creating a subgroup to review this infrastructure.

 

NIST, ISO, IEEE, INCOSE and other working groups are all needed to help in forming a working group to investigate and develop techniques and standards for better system reliability and security. A subgroup would investigate the infrastructure that I have been working on.

 

I would appreciate any help that you can provide in this matter.

 

Thanks,

Gene

Share this post


Link to post
Share on other sites
Guest
You are commenting as a guest. If you have an account, please sign in.
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...

×