Peng Liu | College of Information Sciences and Technology
Close Open

Please Update Your Browser.

It is recommended that you update your browser to the latest version to view the website's full experience.


Peng Liu

You are here

Peng Liu
  • Professor of Information Sciences and Technology

  • Director, Center for Cyber-Security, Information Privacy, and Trust (LIONS)

301F Information Sciences and Technology Building
University Park, PA 16802
(814) 863-0641
Research Interests:

Liu's teaching and research interests include systems security and survivability, database systems, distributed systems, and peer-to-peer systems in the contexts of E-Commerce, digital health care, digital government, command & control, digital infrastructure systems, and Web and wireless applications.


Trusted Recovery and Defensive Information Warfare (Kluwer International Series on Advances in Information Security)
By Peng Liu and Sushil Jajodia
Abstract: Information security concerns the confidentiality, integrity, and availability of information processed by a computer system. With an emphasis on prevention, traditional information security research has focused little on the ability to survive successful attacks, which can seriously impair the integrity and availability of a system. This book uses database trusted recovery as an example to illustrate the principles of trusted recovery in defensive information warfare. Traditional database recovery mechanisms do not address trusted recovery, except for complete rollbacks, which undo the work of benign transactions as well as malicious ones, and compensating transactions, whose utility depends on application semantics. Database trusted recovery faces a set of unique challenges. In particular, trusted database recovery is complicated mainly by (a) the presence of benign transactions that depend, directly or indirectly on malicious transactions; and (b) the requirement by many mission-critical database applications that trusted recovery should be done on-the-fly without blocking the execution of new user transactions. The book proposes a new model and a set of innovative algorithms for database trusted recovery. Both read-write dependency based and semantics based trusted recovery algorithms are proposed. Both static and dynamic database trusted recovery algorithms are proposed. These algorithms can typically save a lot of work by innocent users and can satisfy a variety of attack-recovery requirements of real-world database applications. This book is suitable as a secondary text for a graduate level course in computer science and as a reference for researchers and practitioners in information security. Copyright 2002 by Kluwer Academic Publishers