The ITTC project (Intrusion Tolerance via Threshold Cryptography) developed tools and an infrastructure for building intrusion tolerant applications. Rather than prevent intrusions or detect them after the fact, the ITTC system ensures that the compromise of a few system components does not compromise sensitive security information. To do so, the system protects cryptographic keys by distributing them across a few servers. The keys are never reconstructed at a single location. The design is intended to simplify the integration of ITTC into existing applications. Examples are given for embedding ITTC into the Apache web server and into a Certification Authority(CA). Performance measurements on both the modified web server and the modified CA show that the architecture works and performs well.
