Experimental Evaluation of On-line Techniques for Removing Monitoring Intrusion

We describe the implementation and experimental evaluation of two distributed systems integrated with on-line monitoring intrusion removal techniques. The scheduling of processes at a site is accomplished using the round-robin mechanism. The communication is carried out using a logical token-ring protocol in one system, and a point-to-point protocol in the other. By registering the monitoring activities, such as the instrumentation code in the source program and monitoring processes, monitoring intrusion can be removed in the systems automatically. Experiments were conducted to evaluate the intrinsic overhead of the systems, that is, the cost of providing an intrusion removal capability, and the effectiveness of the systems to remove monitoring intrusion. The intrinsic overhead of both systems was found to be low. In particular, programs took maximally 2.68% and 0.92% more time to finish in the token-ring and pointto -point systems respectively than they did in the original systems tha..