Score
Designing systems to tolerate and recover from failures through redundancy, graceful degradation, multi-region replication, backups, defined RPO/RTO targets, failover procedures, and exercises like chaos engineering and documented disaster recovery plans.
Microservice systems commonly exhibit resilience deficiencies—including localized fault propagation, cascading timeouts, and inconsistent recovery behaviors—yet existing research remains largely descriptive, lacking systematic evidence synthesis and quantitative evaluation. To address this gap, we conduct the first PRISMA-guided systematic literature review (SLR) of 26 high-quality empirical studies published between 2014 and 2025. Our analysis identifies nine core recovery patterns and introduces three novel, empirically grounded artifacts: (1) a reproducible Recovery Pattern Taxonomy; (2) a standardized Resilience Evaluation Score for quantitative assessment; and (3) a constraint-aware decision matrix that explicitly trades off latency, consistency, and cost. Collectively, these contributions establish a structured, quantifiable, and reproducible empirical foundation for resilience-aware microservice design and engineering.
To address insufficient resilience of complex systems under heterogeneous hardware environments, this paper proposes a fault-adaptive software deployment and redundancy configuration optimization method. We construct a system-level resilience state-space model and introduce a novel equivalence relation to enable quotient-space-based state-space reduction, significantly compressing the state space. Subsequently, we integrate formal model checking with strategy synthesis to automatically derive both an initial deployment configuration and dynamic reconfiguration policies that satisfy multi-level resilience requirements. Our key contributions are: (i) a new equivalence relation enabling efficient, semantics-preserving state-space reduction; and (ii) end-to-end automated synthesis of fault-response and recovery strategies. Experimental evaluation on an autonomous driving system model demonstrates that our approach substantially improves fault recovery latency and system availability, while supporting real-time resilience assurance.
Chaos engineering lacks a systematic, comprehensive review in the literature. Method: This paper conducts the first multi-source literature review (MLR), systematically analyzing 96 academic and gray literature sources published between 2016 and 2024—including 88 core publications from 2019 to 2024. It synthesizes findings via thematic clustering and qualitative coding. Contribution/Results: The study establishes the first consensus definition of chaos engineering, proposes a four-layer capability model and a five-dimensional component taxonomy, and performs a cross-tool evaluation of 12 mainstream chaos engineering tools. It identifies six open research challenges and clarifies practice drivers, tool characteristics, and research evolution trends. The results provide a foundational theoretical framework, methodological benchmark, and roadmap for future work—bridging critical knowledge gaps between academia and industry.
Financial software firm Softtech faces concurrent challenges of insufficient system resilience and stringent regulatory compliance requirements. Method: This study designs and deploys a financial-sector–specific chaos engineering framework, integrating compliance-mapping analysis, business-driven fault-injection experiment design, an agile governance model, and a scalable experiment orchestration architecture to achieve bidirectional alignment between regulatory mandates (e.g., PCI DSS, GDPR) and technical implementation. Contribution/Results: We propose the novel “compliance adaptation–organizational embedding–incremental evolution” tripartite framework paradigm—the first systematic solution to scaling chaos engineering in financial software enterprises. Empirical evaluation demonstrates that the framework enables routine resilience validation across multiple business lines, improves fault detection efficiency by 40%, and reduces mean time to recovery by 35%, delivering a reusable methodology and actionable implementation pathway for the industry.
In cloud environments, selecting optimal data protection strategies for business continuity and disaster recovery remains challenging due to the lack of quantitative foundations for evaluating reliability and aligning with organizational Recovery Time Objectives (RTOs) and operational requirements. Method: This paper proposes an integrated assessment framework that synergistically combines system dynamics modeling and simulation-based optimization. It quantitatively evaluates key performance indicators—including recovery timeliness, data integrity, and system robustness—across public and hybrid cloud scenarios by simulating mainstream recovery mechanisms. Contribution/Results: The framework innovatively applies system dynamics to model time-varying dependencies during recovery processes and establishes interpretable, traceable mappings between policy parameters, technical metrics, and business objectives. Empirical validation demonstrates its reproducibility and practical utility, providing cloud-native organizations with a quantifiable, verifiable, and actionable decision-support methodology for data protection strategy selection.
Current cyber-physical systems (CPS) in vehicular environments lack quantitative, experimentally grounded methods for assessing network resilience. Method: This study constructs an experimental testbed replicating real-world truck operational conditions and conducts multiple rounds of malware injection attacks, simultaneously collecting network- and physical-layer data on resistance and recovery behaviors. Contribution/Results: We introduce the novel concept of “bonware” to holistically characterize both cybersecurity defense capability and physical resilience, formalized via an analytically tractable mathematical model. We further define and extract experimentally identifiable, quantitative resilience metrics—termed elastic features—for the first time. Sensitivity analysis confirms these metrics exhibit significant discriminability with respect to attack intensity, defensive strategies, and physical redundancy. This work bridges a critical gap by advancing vehicular CPS resilience from qualitative description to quantifiable, comparable, and optimizable measurement.
This work addresses the limitations of existing hardware fault injection tools, which often lack efficiency and flexibility for systematically evaluating the reliability and fault tolerance of computing systems. To overcome these challenges, the authors present the first modular, open-source, and highly configurable fault injection framework integrated into the gem5 simulator. The framework enables precise injection of both hardware and software faults across multiple architectural levels—from registers to caches—and supports sophisticated fault models coupled with fine-grained triggering mechanisms. By offering unprecedented control and scalability, this infrastructure significantly enhances the ability to assess fault-tolerant mechanisms and resilience strategies, thereby providing a powerful and flexible experimental platform for advancing research in high-reliability, high-performance computing systems.
Cyber-physical systems of systems (CPSoS) in Industry 4.0 and smart homes face escalating cyber threats and dynamic environmental perturbations, undermining their resilience and operational continuity. Method: This paper proposes an enhanced cyber-resilience lifecycle framework that integrates systems engineering principles, multi-layered risk assessment, adaptive control, and closed-loop lifecycle management—distinguishing itself from conventional static models through disturbance-aware sensing, dynamic reconfiguration, and continuous evolution capabilities. Contribution/Results: Empirical validation across multiple representative CPSoS scenarios demonstrates that the framework significantly improves post-attack or post-perturbation recovery speed (average 37% improvement) and operational stability (52% reduction in fault recovery time). It establishes a novel, integrable, and scalable resilience assurance paradigm for large-scale, interconnected CPSoS deployments.
This study addresses the inadequacy of current IT compliance–oriented cybersecurity policies in safeguarding the physical safety of cyber-physical systems, as digital failures often precipitate real-world harm. By coding 292 critical infrastructure policies (2000–2025) and aligning them with the NIST SP 800-160 Vol. 2 resilience lifecycle, the research reveals a significant misalignment between prevailing policy approaches—overreliant on IT control catalogs during resistance and recovery phases—and actual physical risks. The work proposes a modernized “duty of reasonable care” standard centered on hazard-specific traceability, structured assurance cases, and cyber resilience engineering. It identifies three critical disconnects: misaligned delegation of standards, reduction of recovery mechanisms to mere incident reporting, and uneven sectoral adaptability. The study further outlines a viable pathway for federal policy that integrates engineering implementation with targeted incentives.
This study addresses the critical challenge that restoring IT backups alone is insufficient to resume production after ransomware attacks on manufacturing systems, due to deep interdependencies among IT, operational technology (OT), physical processes, identity management, and supply chains. The work reframes recovery as a problem of interdependent continuity in critical infrastructure and introduces, for the first time, the concept of “Minimum Viable Factory Recovery” (MVF Recovery), shifting the objective from full-system restoration to capability-oriented minimal trusted operations. Drawing on a PRISMA-guided multi-source systematic review integrating academic literature, standards, government guidelines, and real-world incidents, the study identifies nine failure modes in recovery efforts and proposes a capability-centered recovery framework. It further establishes an evidence-driven recovery lifecycle model and outlines directions for benchmarking, offering actionable recovery targets for critical manufacturing infrastructure.
This study addresses the reliability challenges faced by modern web applications due to their inherent complexity and dynamic operating environments. The authors propose a modular self-healing framework grounded in the MAPE-K architecture, which innovatively integrates AutoFix-inspired heuristics with a learning-driven, feedback-guided recovery strategy to enable adaptive fault repair. Evaluated through fault injection experiments and iterative optimization in real-world scenarios, the system achieves an F1 score of 90.7% for fault detection and a 93.2% success rate in recovery, with an average recovery time of just 3.92 seconds. Notably, it sustains throughput at 88%–95% of baseline levels while increasing response time by only 3.1%, thereby significantly enhancing the resilience and autonomous recovery capabilities of web applications.