PROJECT TITLE :
SieveQ: A Layered BFT Protection System for Critical Services - 2018
Firewalls play a crucial role in assuring the protection of nowadays's critical infrastructures, forming a initial line of defense by being placed strategically at the front-finish of the networks. Typically, however, they have exploitable weaknesses, allowing an adversary to bypass them in different ways. Therefore, their design ought to embody improved resilience capabilities to permit them to operate correctly in highly adverse environments. This Project proposes SieveQ, a message queue service that protects and regulates the access to essential systems, in a very way almost like an application-level firewall. SieveQ achieves fault and intrusion tolerance by using an design based on 2 filtering layers, enabling economical removal of invalid messages at early stages and decreasing the costs related to Byzantine Fault-Tolerant (BFT) replication of previous solutions. Our experimental analysis shows that SieveQ improves existing replicated-firewalls resilience within the presence of corrupted messages by faulty nodes. Furthermore, it accommodates high loads, as it is able to handle sixteen times more security events per second than what was processed by the security Information and Event Management (SIEM) infrastructure used in the 2012 Summer Olympic Games.
Did you like this research project?
To get this research project Guidelines, Training and Code... Click Here