Jump to content


Photo

New approach and pattern for system reliability and security


2 replies to this topic

#1 eugenenelson

eugenenelson

    Newbie

  • User
  • Pip
  • 2 posts

Posted 09 August 2017 - 11:04 AM

The current approach to Cyber security is usually about one computer and a response to a newly discovered vulnerability. This approach has led to the current Cyber security crisis.

 

A new approach and pattern views a system as many computers working together. A basic assumption is that a computer within a system will become infected.

 

The requirements for such a system are:

 

- Work and bulk data should be protected from an infected system component.

 

- Work and bulk data should be replicated on multiple computers to maximize reliability.

 

- A system should seamlessly recover from or avoid failure situations.

 

One solution approach is for system programs to use an infrastructure for client to server access and to exchange messages. A client and server check point work recovery information along with exchanged messages. The work and client to server communication of a failed client or server can be recovered by the same kind of program running on a different computer. A server knows the identity of a client and what work a client is authorized to request. A server validates that a client request is permitted before performing work. If a client request is not permitted then the client system can be isolated and repaired.

 

This approach and pattern can be used to improve system reliability and security. The software community needs to evaluate this approach and possible infrastructures that help programs within a system to achieve this pattern.

 

Question to forum administrator: Is there a more appropriate forum to post this topic?



#2 Greg Witte

Greg Witte

    Member

  • Administrators
  • 25 posts

Posted 10 August 2017 - 12:23 PM

Good afternoon!

 

I think there's a lot of merit in your suggestion. The adversaries have certainly figured out how to leverage multiple endpoints working as a large infrastructure. What might be the next steps to identify specific outcomes that would lead to your solution?

 

BTW - I don't think there's a particular forum for this. Many of the others deal with specific elements of the Cybersecurity Framework, and I agree with you that this is a topic of general interest.

 

Have a great day!

Greg

 



#3 eugenenelson

eugenenelson

    Newbie

  • User
  • Pip
  • 2 posts

Posted 14 August 2017 - 02:24 PM

Greg,

 

I have been working on an infrastructure for a number of years. The infrastructure is now ready for review and improvement. A working group of interested individuals is needed. I have contacted the INCOSE security working group in the hope of creating a subgroup to review this infrastructure.

 

NIST, ISO, IEEE, INCOSE and other working groups are all needed to help in forming a working group to investigate and develop techniques and standards for better system reliability and security. A subgroup would investigate the infrastructure that I have been working on.

 

I would appreciate any help that you can provide in this matter.

 

Thanks,

Gene





Reply to this topic



  


0 user(s) are reading this topic

0 users, 0 guests, 0 anonymous users