Developing a fail-safe culture in a cyber environment using MySQL replication technique

1. Introduction

The cyber environment, which is more popularly known as the cyberspace has various accepted academic definitions presented by various academic scholars, individuals and organizations. According to the U.S. Department of Defense, the cyberspace can be defined as a global domain within the information environment consisting of the interdependent network of information technology infrastructures, including the internet, telecommunications network, computer systems and embedded processors and controllers? Although different individuals and organizations have different or more preferred definitions of the term, it is safe to say that their various definitions share the fact that the cyberspace is made up of computers, networks, users, devices, electronic transactions, transit data, processes as well as hardware and software (CERT UK and GCHQ, 2012; Chakraborty, 2009; Bishop, 2003; Gollmann, 2005a, 2005b, 2005c; Gollmann, 2005a, 2005b, 2005c). In the last couple of decades before the development, emergence and adoption of the internet, the cyberspace was inexistent. Thus, elements such as devices, networks, data storage and transportation as well as telecommunications were not possible as all day-to-day activities were carried out in the usual traditional approach whereby events had to be performed or carried out physically such as sending of messages from a party or destination to another, transacting in business and services, saving or sharing pieces and bits of information and communicating between two or more parties.

In the past couple of decades before the development, emergence and adoption of the internet, the cyberspace was inexistent. Thus, elements such as devices, networks, data storage and transportation as well as telecommunications were not possible as all day-to-day activities were carried out in the usual traditional approach whereby events had to be performed or carried out physically such as sending of messages from a party or destination to another, transacting in business and services, saving or sharing pieces and bits of information and communicating between two or more parties. During the early 1990s, the internet was invented.

Three decades on, the field of computing and information technology has witnessed arguably one of the fastest growth in human history with devices and concepts reaching out to vast majority of the world while been continued to be adopted on a massive scale from simple individual and corporate activities to the running of governments (Mbanaso et al., 2015; Arshad and Matt, 2009; Locked, 2014). Unlike before the information age, virtually all day-to-day activities of individuals and organizations nowadays are carried out on a very huge scale using computers, users, networks, telecommunications and data that together make up the cyberspace. Therefore, it is important to note that the cyberspace does not just serve as an environment that helps ease our daily activities around the world but also as a necessity for making our activities easier, faster and more accurate.

The transformation to digital age has seen a lot human activities change in terms of their execution and operational procedures due to a lot of reliance on technology as well as the connection between many components. Nowadays, the survival and strength of every national economy across the globe depends on the status of these core sectors i.e. the power or energy, banking and or finance and the telecommunications sector which exclusively depends on one another. These three critical interdependent sectors must be kept running all day, week, month and year round because, the collapse of any of these sectors usually has a cascading effect to the two other sector as each sector absolutely depends on each other for their individual operation (Leidigh, 2005; Leidigh, 2005; Greene, 2012; Gollmann, 2005a, 2005b, 2005c). For instance, the loss of power in the power and energy sector would render the banking and finance and the telecommunications sector useless, and as such, these would lead to the disruption of flow of money, valuables, assets and information, without which no activities can be planned, managed and executed in any case. In another instance, the loss of the banking and finance sector would lead to failure of the other two (although, more slowly). Furthermore, the loss of telecommunications would mean loss of flow of valuable and live or up-to-date information which is the most critical pillar of operation for the other two sectors and every other economic or national sectors and sub-sectors. Thus, it is important to ensure that all three sectors are kept up and running at every point of every year as all other sectors and activities of any nation depends on them, especially the telecommunications sector, which is responsible to connecting all national activities together. In a situation whereby systems or organizations depend on each other for survival and operations, it is referred to as network interdependency in computing. Therefore, with the advancement and high quality research going on in various fields of computing, various types of systems and concepts are designed and applied to protect critical sectors and infrastructure from complete shutdown. These designs are prepared to ensure that should any of these systems fail, they would do so in a more secure manner while getting them back up and running within the shortest possible time period.

2. Literature review

The importance of fail-safeness of systems cannot be over-emphasized as the omnipresence of cyberspace systems development and deployment into consumer-oriented products and services (e.g. PDAs, mobile phones, safety-critical systems such as avionics and car engine control) continues to increase. With our increasing reliance on the use of technological systems on a day-to-day basis around the world for series of complex activities ranging from transportation, banking, generation of energy and power to the running of government, comes along a series of possible and potential challenges regarding the use of these systems, among these issues are faults and security of critical system. In a situation whereby the security of any of these systems is breached, so many users, resources and information are endangered. Therefore, there is every need for fail-safe system in virtually every cyberspace technological system, most especially in safety-critical systems such as the transport systems, information systems, network systems and services. According to (Jack, 2011; Gollmann, 2006; Gollmann, 2005a, 2005b, 2005c; Ida et al., 2013; Locked, 2014; Sajal et al., 2015) fail-safe system is the ability to create a system that is safe-to-fail, on the other view, a fail-safe system can be defined as a system that is designed to consist of a shadow system (a secondary system) whose primary function is to monitor and take actions on the primary system in the event that the primary system security is been compromised by attackers or its physical components are faulty. The primary system carries out all the major activities it was specifically designed for while the secondary system carries on with the monitoring and sensing of irregularities within the main system to avoid getting caught off-guard by attackers and possible system component failure. Typically, in the event that the main system is breached and the secondary system does not respond, high-level damages would be dealt on not only the system, but also the information contained in the system such as data of users, network and connectivity, systems, services, resources, telecommunication channels and so on. Thus, the implications of complete failure of the overall system means loss of confidentiality, integrity and availability of the system, which could lead to loss of properties and other negative impacts on the concerned users.

Although there exists various designs and types of fail-safe systems depending on the technological system in question, each of these systems is designed to serve the same purpose i.e. respond to a fault or breach and mitigate the amount of resource loss as well as protect the confidentiality and integrity of the system and its contents within the fastest possible time. There exist a number of fail-safe systems designed in the last couple of decades. A typical example of these systems includes a fault tolerance system for controlling the speed of a train called SACEM (Guiho and Hennehert, 2000; SANS, 2002; SANS INSTITUTE, 2004; Semantec, 2011), their systems which emerged as an automatic speed control system in the field of railway systems, the strength of this system is that, it function best in a rail system, constantly monitoring the critical part such as the breaking system because failure in the breaking system always resulting to a catastrophe, their system do not take into consideration the interdependency of critical unit in a cyber-environment whose effect always cascade to other dependent unit.

3. Security risk and analysis

Computer and network security involves the monitoring, analysis, detection and prevention of unauthorized access to cyber systems by illegitimate users resolve. It also involves the protection of the cyberspace against activities such as the intentional disruption or diversion of systems and their resources as well as the integrity and confidentiality of the information stored or passed through the system. Additionally, the concept of network and computer security is not limited to only the software components of the system as it also consists of controlling user access to the physical system such as the hardware. However, to ensure that all these activities of monitoring, controlling, detecting and preventing against unauthorized access to a system are fully followed up and implemented, the principles of system security architecture must be duly followed. Over the years, the need for computer and network security has become increasingly important. According to a community emergency response team (CERT) (CERT UK and GCHQ, 2012; Semantec, 2011; Willian, 2015; Zahri and Syahrul, 2010) survey taken by the Carnegie Mellon University (a Centre for Internet Security Expertise) from the year 1998 to 2003, there has been over 400 increase in the number of reported system security incidents. Hence, this means that more robust mechanisms and approaches are needed to mitigate the impacts of potential loss for organizations and individuals; one of these mechanisms and approaches is the concept of fail-safe. Therefore, after all design decisions of any cyber system have been clearly outlined, the concept of a fail-safe system can be coupled together with tighter organizational and individual security policies, mechanisms and principles.

4. Cyber security assessment

To prepare a sufficient and efficient defence mechanism on a cyber-system so as to prevent or mitigate against potential cyber-attacks, it is highly necessary to measure the threshold of the attack as well as how prepared your defence is and what it is prepared for, should the attack be successfully launched against the system. The cyberspace security assessment provides vital information about these possible events by using assessment factors such as the vulnerability, threat and risk analysis (FFIEC, 2015).

5. Methodology

The purpose of the method used is to provide a structure for the overall study by showing how various parts of the study work, to address the primary problems. Figure 4 depicts the design framework for the Universal System Model. However, this paper considered several philosophical thoughts; it favored the mix paradigm (qualitative and quantitative approach) because of the characteristics of the empirical variables and focused mainly on the following components:

1. Environment: the environment indicate where the system can be used, these include the following:

2. People: These include bank’s staff and customers that can use the system, including the system administration.

3. Organization: Although the case study of the work is banking sector and the Telecommunication, other organization such as e-commerce and education.

4. Governance can be integrated into the system.

5. Technology: This emphasis on the technology that will be deploying in using the system as well as in designing the system. These include(s) Netbeans IDE, JavaFX Scene Builder, MYSQL Workbench, etc.

6. Strategy: This look at the case study used for the work, a model of a Fail-Safe is design that can be used in a cyber-environment, such environment is characterize by interdependency of critical component of economy for optimal result.

7. Methods/technique: The methods/technique use are highlighted as follow: Documentation: The study used a well-documented banking transaction procedure

8. Develop/build: The model was develop using the available technology as listed in the framework

9. Validation: The system is validated using the following procedure:

   • Test 1: Both the primary and the secondary server are working correctly i.e. replication processes is working correctly.

   • Test 2: The primary server is attacked (DDoS), the secondary server takes over control in real time.

   • Test 3: The primary server is restored, the secondary server update the main server of the processes that takes place while it was down and the process continue.

10. Methodology: The mix paradigm was carefully chosen because of the nature of the empirical variables used for the work.

11. Philosophy: The pragmatic approach was used because of the fact that both external and multiple view was chosen to best answer the research question.

The main setting adopted for the entirety of this project is based on a general University environment such as the offices, laboratory services and the library. The resources used to aid the development and successful completion of the project include a working personal computer system, programing tools such as software applications and Web platforms, journal articles and other scientific publications, as well as textbooks and other online resources.

Require: filteredData = Predicateactivity

Ensure: newValue = null

 Return null

 String: lowerCase f ilter newValueLowerCase

 CustomerID newdata

 while filtertext empty(0) do

        Display − all – persons      

Display − all – personsID

      if activity is lowercase       

lter then

          return true × filter − matches – firstname     

customerother (customer)object                       ▷customer

is set to object

      else if String − activity = get − account number then

         Customer model × filterdata        

CustomerTable sortedData

       CustomerList sortedData2

       Return false

       Return true       

refreshdata

      refreshtable

    end if

end while

6. The fail-safe system design and development

Universal System’s Model is used to design the fail-safe system based on the core elements as shown in Figure 5. First, the goal of the fail-safe system is to ensure that, in the event of any security breach or action that leads to the unavailability of resources such as access to data-center by legitimate users, a secondary system is able to carry on the functions of the primary system without the end-user even noticing any changes or interruptions during system usage, hence drastically mitigating the risk of resource loss. Second, the input taken by the fail-safe system in this study is the data generated in the test client (BankApp). This includes any form of information inserted, modified or deleted from the test client such as customer bank account and transactions details (as in the case of a BankApp). Third, at the process element of the USM, the primary process that occurs within the fail-safe system is the technique of replication, which occurs at the virtualization section of the datacenter where information sent or modified on the primary server is replicated in real-time unto the secondary data. Fourth, the main output expected from the fail-safe system is the replicated data taken at the process element by the backup server from the primary server in real-time. Finally, at the feedback element, the fail-safe system is evaluated to determine whether or not the fail-safe system is reliable. For example, if the primary server or system becomes unavailable due to reasons such as denial-of-service attack, the fail-safe system is tested to determine if the backup server can immediately take over without any interruptions at the test client side (BankApp).

The entity relation diagram (Figure 7) shows the various object in the BankApp and it is associated entities and the number of character and the type associated with each character and the use-case diagram (Figure 8) shows the objects in the system, for example, how the admin and a staff can use the system; the admin in this case can register a person or suspend a staff if necessary; the staff can register customer and conduct bank transactions as well.

7. The data center

By considering the size and sensitivity of the data processed on a daily basis by banking institutions, there exists the need for a warehouse for these large chunks of data. This is known as the datacenter. It serves as a facility for organizations such as banks where information is stored, managed and disseminated in a centralized manner. Consisting of two major servers, namely, the primary (main) and secondary (backup) servers also known as the Master and Slave Servers respectively, the datacenter for the bank was virtualized. At the datacenter, real-time data received at the Master server is consistently replicated onto the Slave server in real-time. Additionally, there exist sub-servers on each of the two main servers, responsible for keeping information up-to-date and backed up between the two servers as shown in Figure 9.

At any point, should the Master server get shut down or become unavailable due to circumstances such as security breach, the Slave server automatically takes over operations from the failed master server without the end-users noticing any change or interruptions while the sub-servers of the slave server begin to replicate information received by the new master server until the failed server is restored to a normal condition. Hence, in any information system, the more the number of master servers, the higher the chances of sustaining the availability of the system, which would in turn maintain the integrity and confidentiality of the information contained within the servers. Furthermore, before information gets into the Master server from the BankApp in the first place, it is passed through a snort Intrusion Detection System, which performs scanning and filtering of packets to reduce the chances of attacks against the main server. The Snort IDS is placed between the main source of the information (e.g. the BankApp platform) and the virtualized servers.

For a system, especially one in the form of an artifact to be produced, certain software and hardware requirements must be met, as they constitute some of the major components needed to develop a whole system. Thus, in this study, some software application tools and hardware components were used as discussed further in section. The software applications and tools used to develop the fail-safe system are categorized into three distinct group based on the development process of the system. During the test client development stage, the NetBeans IDE V8.0.2 was used together with the JavaFx Scene Builder for the design and customization of the user interface of the BankApp. This is because the software applications provide flexibility and customization within a GUI based on object-oriented programing. At the design and development of the datacenter, the Linux (Fedora) operating system was used to configure and mount the Primary (Master) and Secondary (Slave) servers (Figure 10) using the feature of virtualization contained in the VMware Workstation (V12 Pro) to allow real-time replication of information between the two servers as well as provide the administrator a wider range of options in terms of system configuration and controls. Additionally, while the ERD was designed using the MySQL workbench (V6.2) for the management of the test client’s database, Java programing language was used for the overall design of the fail-safe system because it is object-oriented and supports the development of a more efficient, secure, reliable and user-friendly system.

Although the fail-safe system can be run on virtually every type of system with common minimum requirements, it is best that the system is run on the following minimum requirements in Table I to achieve optimal efficiency and speed considering the environment that the system would be used.

8. Results from evaluation and testing

The main purpose of conducting this evaluation is to determine the resulting effect, i.e. to test whether the designed fail-safe system is capable of maintaining the availability of the BankApp through real-time replication of transmitted of stored information. To determine this, three tests have to be run including a test to initially show that both servers are working normally, another to show the presence of an attack on the Master server as well as a test to show that the Slave (backup) server not only automatically picks up to continue with normal system operations but also enables replication continuity onto its sub-servers in case of similar re-occurrence of circumstance. In addition, it is important to note that all these sets of activities should occur so fast (seamlessly) without the end-user interrupted from any of his activities before or while the failed Master server is attempted to be restored back to normal operations.

9. Conclusion

Information systems continue to face hard and threatening challenges of cyber-attacks, vulnerabilities and risks in a time where organizations, governments and even individuals highly depend on these systems for the execution of their various daily activities. In any case, where any of these entities is breached security-wise, the confidentiality, integrity and availability of information in transit or storage may likely be in jeopardy. Hence, valuable resources, market and business confidence amongst other factors could be lost.

This paper has presented a designed and developed fail-safe system for the cyber-environment using the instance of the network interdependency concept to illustrate how key sectors and organizations of a Nation depend on each other’s survival for their operations as well as how the system can be implemented to prevent or mitigate against unavailability, integrity and confidentiality within the cyber environment in the case of a system security breach. Furthermore, this system has been tested and evaluated through simulation to show how it effectively functions to solve the problem in question. The cyberspace and concept of network interdependency, the problem statement and the aims and objectives of the study and been tackled. The paper presented the design and approach to model development with novel tools and techniques used to develop the fail-safe system. This paper also gives an overview of system model, the design and development process, requirement specifications, evaluation and testing of the system while briefly recapturing the overall data and model flow process. Following the conclusions presented here, the developed fail-safe system with MySQL replication technique is highly reliable to organizations, which would help mitigate the impact of resource loss in an event of a system security breach while improving business and market confidence outside the organization.

The role and benefits of this paper to Crowd Science in areas of cyber physical/information systems in the instance of the network interdependency concept, involves the mitigation of the fail-safe system which was presented in all aspect of the paper. The system can be implemented within the cyber-environment to improve the security of information systems for organizations. With reference to network interdependency, this research can be used to mitigate or prevent against the impacts of cyber-security breach, considering that no cyber system is fail proof. Critical information transmitted or stored on an organization’s server would largely benefit from this system in terms of efficiency and full-on availability of service, which in turn, increases customer and market confidence as well as save the resources of an organization.

The contribution to knowledge here is that, while there are fail-safe mechanism such as system recovery used in Microsoft office, system backup used by many organization, non-have considered the system in an interdependent environment (cyber-environment) where critical sector such as telecommunication, banking/finance and financial activities by banks customer completely depends on one another, this paper has provided a model that addressed a fail-safe in an interdependent environment. In summary, the achievements here include:

• to provide fail-safe in interdependent system environment;

• safer to implement a fail-safe mechanism at data-center to avoid duplication in a multiple environment; and

• continuous provision of service(s) to customers and staff on the event of DDoS attacks.

Future recommendations includes application of a fail-safe method at the data-center, a master–master architecture should be used to implement a fail-safe technique and considering the size and scale of the cyberspace including the high number of users and devices involved, certain limitations exist in terms of delivering a wider or more complex study. In the future, other methods can be explored such as the use of clustering technique at the data-center instead of replication. In addition, a more robust system can be developed to function more effectively such as a fail-safe system that also consists of more components like monitoring, detection and prevention unit.