Title :
Towards a formal framework for evaluating the effectiveness of system diversity when applied to security
Author :
Khoury, Richard ; Hamou-Lhadj, Abdelwahab ; Couture, Mario
Author_Institution :
Defence R&D Canada, Valcartier, QC, Canada
Abstract :
N-version programming has been shown to be an effective way to increase the reliability of systems. In this study, we examine the possibility of extending this approach to address security, rather than reliability concerns. We focus specifically on how to evaluate the efficiency of the use of diversity for security. We show that while several key elements must be taken into account when N-version programming is used for security rather than reliability, it is nonetheless possible to devise a reasoning framework to evaluate the efficiency of this development paradigm in a security context. This framework allows us to reason about the most effective way to use diversity for security.
Keywords :
programming; security of data; software reliability; N-version programming; development paradigm; effectiveness evaluation; efficiency evaluation; formal framework; security; system diversity; system reliability; Computer architecture; Context; Correlation; Programming; Reliability; Security; Software;
Conference_Titel :
Computational Intelligence for Security and Defence Applications (CISDA), 2012 IEEE Symposium on
Conference_Location :
Ottawa, ON
Print_ISBN :
978-1-4673-1416-9
DOI :
10.1109/CISDA.2012.6291540
