Browse wiki

From Navigators

Jump to: navigation, search
Publication:Garcia11osdiversity
Abstract One of the key benefits of using intrusion … One of the key benefits of using intrusion-tolerant systems is the possibility of ensuring correct behavior in the presence of attacks and intrusions. These security gains are directly dependent on the components exhibiting failure diversity. To what extent failure diversity is observed in practical deployment depends on how diverse are the components that constitute the system. In this paper we present a study with operating systems (OS) vulnerability data from the NIST National Vulnerability Database. We have analyzed the vulnerabilities of 11 different OSes over a period of roughly 15 years, to check how many of these vulnerabilities occur in more than one OS. We found this number to be low for several combinations of OSes. Hence, our analysis provides a strong indication that building a system with diverse OSes may be a useful technique to improve its intrusion tolerance capabilities. rove its intrusion tolerance capabilities.
Author Miguel Garcia + , Alysson Bessani + , Ilir Gashi + , Nuno Ferreira Neves + , Rafael R. Obelheiro +
Booktitle Proceedings of the International Conference on Dependable Systems and Networks - DSN'11. Hong Kong, China, June 2011.  +
Key Garcia11osdiversity  +
Month jun  +
NumPubDate 2,011.06  +
Project Project:DIVERSE + , Project:MASSIF +
ResearchLine Fault And Intrusion Tolerance in Open Distributed Systems (FIT) +
Title OS Diversity for Intrusion Tolerance: Myth or Reality?  +
Type inproceedings  +
Url http://www.navigators.di.fc.ul.pt/archive/papers/nvd-diversity-study.pdf  +
Year 2011  +
Categories Publication  +
Modification¬†dateThis property is a special property in this wiki. 14 January 2013 14:40:50  +
hide properties that link here 
  No properties link to this page.
 

 

Enter the name of the page to start browsing from.
Views
Personal tools
Toolbox
Navigators toolbox