Diversity-Based Approaches to Software Systems Security

被引:0
作者
Gherbi, Abdelouahed [1 ]
Charpentier, Robert [2 ]
机构
[1] ETS, Dept Software & IT Engn, Montreal, PQ, Canada
[2] Def Res & Dev Canada, Valcartier, Quebec City, PQ, Canada
来源
SECURITY TECHNOLOGY | 2011年 / 259卷
关键词
Security; IT monoculture; Diversity; Dynamic monitoring; BEHAVIORAL DISTANCE; INTRUSION;
D O I
暂无
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Software systems security represents a major concern as cyber-attacks continue to grow in number and sophistication. In addition to the increasing complexity and interconnection of modern information systems, these systems run significant similar software. This is known as IT monoculture. As a consequence, software systems share common vulnerabilities, which enable the spread of malware. The principle of diversity can help in mitigating the negative effects of IT monoculture on security. One important category of the diversity-based software approaches for security purposes focuses on enabling efficient and effective dynamic monitoring of software system behavior in operation. In this paper, we present briefly these approaches and we propose a new approach which aims at generating dynamically a diverse set of lightweight traces. We initiate the discussion of some research issues which will be the focus of our future research work.
引用
收藏
页码:228 / +
页数:4
相关论文
共 50 条
  • [41] On the Data Security of Information Systems: Comparison of Approaches and Challenges
    Abdmeziem, Farah
    Boukhedouma, Saida
    Oussalah, Mourad Chabane
    COMPUTATIONAL SCIENCE AND ITS APPLICATIONS, ICCSA 2021, PT III, 2021, 12951 : 240 - 255
  • [42] A STUDY OF SECURITY APPROACHES FOR THE DEVELOPMENT OF MOBILE GRID SYSTEMS
    Rosado, David G.
    Fernandez-Medina, Eduardo
    Lopez, Javier
    ICSOFT 2010: PROCEEDINGS OF THE FIFTH INTERNATIONAL CONFERENCE ON SOFTWARE AND DATA TECHNOLOGIES, VOL 1, 2010, : 133 - 138
  • [43] Diversity for Safety and Security of Embedded and Cyber Physical Systems: Fundamentals Review and Industrial Cases
    Kharchenko, Vyacheslav
    2016 15TH BIENNIAL BALTIC ELECTRONICS CONFERENCE (BEC), 2016, : 17 - 26
  • [44] The impact of diversity-based, high-throughput screening on drug discovery: "Chance favours the prepared mind"
    Snowden, Michael A.
    Green, Darren V. S.
    CURRENT OPINION IN DRUG DISCOVERY & DEVELOPMENT, 2008, 11 (04) : 553 - 558
  • [45] Improving the Safety and Security of Software Systems by Mediating SAP Verification
    Almufareh, Maram Fahaad
    Humayun, Mamoona
    APPLIED SCIENCES-BASEL, 2023, 13 (01):
  • [46] Safety, Security, and Configurable Software Systems: A Systematic Mapping Study
    Kenner, Andy
    May, Richard
    Krueger, Jacob
    Saake, Gunter
    Leich, Thomas
    SPLC '21: PROCEEDINGS OF THE 25TH ACM INTERNATIONAL SYSTEMS AND SOFTWARE PRODUCT LINE CONFERENCE, VOL A, 2021,
  • [47] Reconfirming change in secure software systems: An adaptable security approach
    Chung, L
    Subramanian, N
    SAM '05: PROCEEDINGS OF THE 2005 INTERNATIONAL CONFERENCE ON SECURITY AND MANAGEMENT, 2005, : 320 - 326
  • [48] Bluetooth security design based on software oriented hardware-software partition
    Lee, G
    Park, SC
    5TH WORLD WIRELESS CONGRESS, PROCEEDINGS, 2004, : 157 - 160
  • [49] Bluetooth security implementation based on software oriented hardware-software partition
    Lee, G
    Park, SC
    ICC 2005: IEEE INTERNATIONAL CONFERENCE ON COMMUNICATIONS, VOLS 1-5, 2005, : 2070 - 2074
  • [50] A survey of approaches combining safety and security for industrial control systems
    Kriaa, Siwar
    Pietre-Cambacedes, Ludovic
    Bouissou, Marc
    Halgand, Yoran
    RELIABILITY ENGINEERING & SYSTEM SAFETY, 2015, 139 : 156 - 178
12345