OS diversity for intrusion tolerance: Myth or reality?

Authors:
Miguel Garcia;Alysson Bessani;Ilir Gashi;Nuno Neves;Rafael Obelheiro
Affiliations:
LaSIGE, University of Lisbon, Faculty of Sciences - Portugal;LaSIGE, University of Lisbon, Faculty of Sciences - Portugal;Center for Software Reliability, City University London - UK;LaSIGE, University of Lisbon, Faculty of Sciences - Portugal;Computer Science Department, State University of Santa Catarina - Joinville, Brazil
Venue:
DSN '11 Proceedings of the 2011 IEEE/IFIP 41st International Conference on Dependable Systems&Networks
Year:
2011

Citing 0
Cited 2

Using diversity in cloud-based deployment environment to avoid intrusions

SERENE'11 Proceedings of the Third international conference on Software engineering for resilient systems
Software behaviour correlation in a redundant and diverse environment using the concept of trace abstraction

Proceedings of the 2013 Research in Adaptive and Convergent Systems

Quantified Score

Hi-index	0.00

Visualization

Abstract

One of the key benefits of using intrusion-tolerant systems is the possibility of ensuring correct behavior in the presence of attacks and intrusions. These security gains are directly dependent on the components exhibiting failure diversity. To what extent failure diversity is observed in practical deployment depends on how diverse are the components that constitute the system. In this paper we present a study with operating systems (OS) vulnerability data from the NIST National Vulnerability Database. We have analyzed the vulnerabilities of 11 different OSes over a period of roughly 15 years, to check how many of these vulnerabilities occur in more than one OS. We found this number to be low for several combinations of OSes. Hence, our analysis provides a strong indication that building a system with diverse OSes may be a useful technique to improve its intrusion tolerance capabilities.