Thou Shalt Not Trust non-Trustworthy Systems

Paulo Esteves Veríssimo

Keynote at the Workshop on Assurance in Distributed Systems and Networks (ADSN2006), with the 26th IEEE International Conference on Distributed Computing Systems (ICDCS 2006), Lisboa, Portugal, July 2006.

Abstract

Computer systems and ICT at large (information and communication technologies) are on the verge of a strange era that calls for paradigms reconciling uncertainty with predictability. Grand challenges require drastic changes, and they are happening: in the hybrid, dynamic and decentralised way we start looking at system design, once quite homogeneous, static, centralised, and in the cross-fertilising way we now look at previously disjoint scientific fields. Two issues are discussed in this paper that are central to modern design of dependable and secure dynamic distributed systems: the confluence between classical dependability and security, met essentially but not only by the concept of common ’accidental fault and malicious intrusion tolerance’; and the necessary but often forgotten link between trust (dependence or belief on some system’s properties) and trustworthiness (the merit of that system to be trusted, the degree to which it meets those properties, or its dependability).

BibTeX

@InProceedings{verissimo06thou,

 author = {Paulo Ver\'{\i}ssimo},

 title = {Thou Shalt Not Trust non-Trustworthy Systems},
booktitle = "Keynote at the Workshop on Assurance in Distributed Systems and Networks (ADSN2006), with the 26th IEEE International Conference on Distributed Computing Systems (ICDCS 2006)",
year = {2006},
month=jul

 }

Extended Version

Download the pdf.