On the Effects of Diversity on Intrusion Tolerance
| Autor(a) principal: | |
|---|---|
| Data de Publicação: | 2008 |
| Outros Autores: | , , |
| Tipo de documento: | Relatório |
| Idioma: | por |
| Título da fonte: | Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| Texto Completo: | http://hdl.handle.net/10451/14137 |
Resumo: | The security gains of intrusion-tolerant systems are directly dependent on the assumption that system components fail independently of one another. The coverage of this assumption in a real-world deployment depends on how diversity is employed, using, for example, diverse off-the-shelf components. In this paper we detail a study we have done with vulnerability data, reported in the period 1999 to 2007, which we extracted from the NIST National Vulnerability Database. We provide empirical analysis of the data collected as well as exploratory analyses of the potential gains in security from employing diverse operating systems. The modelling approaches presented are of practical significance to system designers wishing to employ diversity with off-the-shelf components since often the vulnerability reports are the only direct security evidence available to them |
| id |
RCAP_f2335c6c60b8bd60d17065642ac9aa4b |
|---|---|
| oai_identifier_str |
oai:repositorio.ul.pt:10451/14137 |
| network_acronym_str |
RCAP |
| network_name_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| repository_id_str |
7160 |
| spelling |
On the Effects of Diversity on Intrusion ToleranceDiversityIntrusion ToleranceByzantine Fault ToleranceSecurityThe security gains of intrusion-tolerant systems are directly dependent on the assumption that system components fail independently of one another. The coverage of this assumption in a real-world deployment depends on how diversity is employed, using, for example, diverse off-the-shelf components. In this paper we detail a study we have done with vulnerability data, reported in the period 1999 to 2007, which we extracted from the NIST National Vulnerability Database. We provide empirical analysis of the data collected as well as exploratory analyses of the potential gains in security from employing diverse operating systems. The modelling approaches presented are of practical significance to system designers wishing to employ diversity with off-the-shelf components since often the vulnerability reports are the only direct security evidence available to themDepartment of Informatics, University of LisbonRepositório da Universidade de LisboaBessani, Alysson NevesObelheiro, Rafael R.Sousa, PauloGashi, Ilir2009-02-10T13:12:01Z2008-122008-12-01T00:00:00Zinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/reportapplication/pdfhttp://hdl.handle.net/10451/14137porinfo:eu-repo/semantics/openAccessreponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos)instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãoinstacron:RCAAP2023-11-08T15:59:45Zoai:repositorio.ul.pt:10451/14137Portal AgregadorONGhttps://www.rcaap.pt/oai/openaireopendoar:71602024-03-19T21:35:59.090811Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informaçãofalse |
| dc.title.none.fl_str_mv |
On the Effects of Diversity on Intrusion Tolerance |
| title |
On the Effects of Diversity on Intrusion Tolerance |
| spellingShingle |
On the Effects of Diversity on Intrusion Tolerance Bessani, Alysson Neves Diversity Intrusion Tolerance Byzantine Fault Tolerance Security |
| title_short |
On the Effects of Diversity on Intrusion Tolerance |
| title_full |
On the Effects of Diversity on Intrusion Tolerance |
| title_fullStr |
On the Effects of Diversity on Intrusion Tolerance |
| title_full_unstemmed |
On the Effects of Diversity on Intrusion Tolerance |
| title_sort |
On the Effects of Diversity on Intrusion Tolerance |
| author |
Bessani, Alysson Neves |
| author_facet |
Bessani, Alysson Neves Obelheiro, Rafael R. Sousa, Paulo Gashi, Ilir |
| author_role |
author |
| author2 |
Obelheiro, Rafael R. Sousa, Paulo Gashi, Ilir |
| author2_role |
author author author |
| dc.contributor.none.fl_str_mv |
Repositório da Universidade de Lisboa |
| dc.contributor.author.fl_str_mv |
Bessani, Alysson Neves Obelheiro, Rafael R. Sousa, Paulo Gashi, Ilir |
| dc.subject.por.fl_str_mv |
Diversity Intrusion Tolerance Byzantine Fault Tolerance Security |
| topic |
Diversity Intrusion Tolerance Byzantine Fault Tolerance Security |
| description |
The security gains of intrusion-tolerant systems are directly dependent on the assumption that system components fail independently of one another. The coverage of this assumption in a real-world deployment depends on how diversity is employed, using, for example, diverse off-the-shelf components. In this paper we detail a study we have done with vulnerability data, reported in the period 1999 to 2007, which we extracted from the NIST National Vulnerability Database. We provide empirical analysis of the data collected as well as exploratory analyses of the potential gains in security from employing diverse operating systems. The modelling approaches presented are of practical significance to system designers wishing to employ diversity with off-the-shelf components since often the vulnerability reports are the only direct security evidence available to them |
| publishDate |
2008 |
| dc.date.none.fl_str_mv |
2008-12 2008-12-01T00:00:00Z 2009-02-10T13:12:01Z |
| dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
| dc.type.driver.fl_str_mv |
info:eu-repo/semantics/report |
| format |
report |
| status_str |
publishedVersion |
| dc.identifier.uri.fl_str_mv |
http://hdl.handle.net/10451/14137 |
| url |
http://hdl.handle.net/10451/14137 |
| dc.language.iso.fl_str_mv |
por |
| language |
por |
| dc.rights.driver.fl_str_mv |
info:eu-repo/semantics/openAccess |
| eu_rights_str_mv |
openAccess |
| dc.format.none.fl_str_mv |
application/pdf |
| dc.publisher.none.fl_str_mv |
Department of Informatics, University of Lisbon |
| publisher.none.fl_str_mv |
Department of Informatics, University of Lisbon |
| dc.source.none.fl_str_mv |
reponame:Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) instname:Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação instacron:RCAAP |
| instname_str |
Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
| instacron_str |
RCAAP |
| institution |
RCAAP |
| reponame_str |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| collection |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) |
| repository.name.fl_str_mv |
Repositório Científico de Acesso Aberto de Portugal (Repositórios Cientìficos) - Agência para a Sociedade do Conhecimento (UMIC) - FCT - Sociedade da Informação |
| repository.mail.fl_str_mv |
|
| _version_ |
1799134258545033216 |