Although many have recognized that software monocultures are a major impediment to improving security, it is currently unclear how much and what kind of diversity is needed to counteract this problem. This thesis provides a framework for investigating software diversity in the context of security. We propose a simple model of a software ecosystem using sets of hosts and vulnerabilities represented as a bipartite graph, and we exhibit a few examples of software security problems formulated precisely enough in this model to admit rigorous analysis. We propose software diversity metrics using entropy, illustrate a calculation using real world data, and analyse six popular defence techniques for their effect on inhibiting large scale attacks. W...
Cyber crime is a significant threat to modern society that will continue to grow as technology is in...
Software systems often share common vulnerabilities that allow a single attack to compromise large n...
Early experiments with software diversity in the mid 1970’s investigated N-version programming and r...
In this work, we briefly introduce and discuss some of the diversity measures used in Ecology. After...
Due to copyright restrictions, the access to the full text of this article is only available via sub...
The best efforts of the computer security community have not eliminated software with hidden attacka...
Diversity is an important and valuable concept that has been adopted in many fields to reduce correl...
Cyber crime is a significant threat to modern society that will continue to grow as technology is in...
Abstract—The idea of automatic software diversity is at least two decades old. The deficiencies of c...
Abstract—The idea of automatic software diversity is at least two decades old. The deficiencies of c...
Abstract. When there are either design or implementation flaws, a ho-mogeneous architecture is likel...
Abstract—The software monoculture favors attackers over defenders, since it makes all target environ...
Diversity is an important source of robustness in biological systems. Computers, by contrast, are no...
Early experiments with software diversity in the mid 1970's investigated N-version programming and r...
The goal of this research was to explore first principles associated with mixing of diverse implemen...
Cyber crime is a significant threat to modern society that will continue to grow as technology is in...
Software systems often share common vulnerabilities that allow a single attack to compromise large n...
Early experiments with software diversity in the mid 1970’s investigated N-version programming and r...
In this work, we briefly introduce and discuss some of the diversity measures used in Ecology. After...
Due to copyright restrictions, the access to the full text of this article is only available via sub...
The best efforts of the computer security community have not eliminated software with hidden attacka...
Diversity is an important and valuable concept that has been adopted in many fields to reduce correl...
Cyber crime is a significant threat to modern society that will continue to grow as technology is in...
Abstract—The idea of automatic software diversity is at least two decades old. The deficiencies of c...
Abstract—The idea of automatic software diversity is at least two decades old. The deficiencies of c...
Abstract. When there are either design or implementation flaws, a ho-mogeneous architecture is likel...
Abstract—The software monoculture favors attackers over defenders, since it makes all target environ...
Diversity is an important source of robustness in biological systems. Computers, by contrast, are no...
Early experiments with software diversity in the mid 1970's investigated N-version programming and r...
The goal of this research was to explore first principles associated with mixing of diverse implemen...
Cyber crime is a significant threat to modern society that will continue to grow as technology is in...
Software systems often share common vulnerabilities that allow a single attack to compromise large n...
Early experiments with software diversity in the mid 1970’s investigated N-version programming and r...