Analysis of operating system diversity for intrusion tolerance. (15th January 2013)
- Record Type:
- Journal Article
- Title:
- Analysis of operating system diversity for intrusion tolerance. (15th January 2013)
- Main Title:
- Analysis of operating system diversity for intrusion tolerance
- Authors:
- Garcia, Miguel
Bessani, Alysson
Gashi, Ilir
Neves, Nuno
Obelheiro, Rafael - Abstract:
- <abstract abstract-type="main" id="spe2180-abs-0001"> <title>SUMMARY</title> <p id="spe2180-para-0001">One of the key benefits of using intrusion‐tolerant systems is the possibility of ensuring correct behavior in the presence of attacks and intrusions. These security gains are directly dependent on the components exhibiting failure diversity. To what extent failure diversity is observed in practical deployment depends on how diverse are the components that constitute the system. In this paper, we present a study with operating system's (OS's) vulnerability data from the NIST National Vulnerability Database (NVD). We have analyzed the vulnerabilities of 11 different OSs over a period of 18 years, to check how many of these vulnerabilities occur in more than one OS. We found this number to be low for several combinations of OSs. Hence, although there are a few caveats on the use of NVD data to support definitive conclusions, our analysis shows that by selecting appropriate OSs, one can preclude (or reduce substantially) common vulnerabilities from occurring in the replicas of the intrusion‐tolerant system. Copyright © 2013 John Wiley & Sons, Ltd.</p> </abstract>
- Is Part Of:
- Software, practice & experience. Volume 44:Number 6(2014)
- Journal:
- Software, practice & experience
- Issue:
- Volume 44:Number 6(2014)
- Issue Display:
- Volume 44, Issue 6 (2014)
- Year:
- 2014
- Volume:
- 44
- Issue:
- 6
- Issue Sort Value:
- 2014-0044-0006-0000
- Page Start:
- 735
- Page End:
- 770
- Publication Date:
- 2013-01-15
- Subjects:
- Computer software -- Periodicals
Computer programming -- Periodicals
Computer programs -- Periodicals
005.3 - Journal URLs:
- http://onlinelibrary.wiley.com/ ↗
- DOI:
- 10.1002/spe.2180 ↗
- Languages:
- English
- ISSNs:
- 0038-0644
- Deposit Type:
- Legaldeposit
- View Content:
- Available online (eLD content is only available in our Reading Rooms) ↗
- Physical Locations:
- British Library DSC - 8321.453000
British Library DSC - BLDSS-3PM
British Library STI - ELD Digital store - Ingest File:
- 4238.xml