An experimental evaluation of the assumption of independence in multiversion programming
IEEE Transactions on Software Engineering
Conceptual Modeling of Coincident Failures in Multiversion Software
IEEE Transactions on Software Engineering
Modeling software design diversity: a review
ACM Computing Surveys (CSUR)
Diversity against Accidental and Deliberate Faults
CSDA '98 Proceedings of the Conference on Computer Security, Dependability, and Assurance: From Needs to Solutions
Building Diverse Computer Systems
HOTOS '97 Proceedings of the 6th Workshop on Hot Topics in Operating Systems (HotOS-VI)
Countering code-injection attacks with instruction-set randomization
Proceedings of the 10th ACM conference on Computer and communications security
Randomized instruction set emulation to disrupt binary code injection attacks
Proceedings of the 10th ACM conference on Computer and communications security
Address obfuscation: an efficient approach to combat a board range of memory error exploits
SSYM'03 Proceedings of the 12th conference on USENIX Security Symposium - Volume 12
A model for quantitative security measurement and prioritisation of vulnerability mitigation
International Journal of Security and Networks
| Hi-index | 0.00 |
This panel addressed the use of computer diversity as a strategy for computer security. It is our view that there are significant knowledge gaps in the science underlying diversity as a computer defense mechanism which hinders its usefulness. These gaps include the true cost of diversity, a lack of metrics for diversity and the trade offs between diversity and other defensive strategies. We also wanted to highlight on-going diversity research from other disciplines which could potentially be applied to diversity for computer security.Four panelists were selected based on their experience with diversity within the context of computer security or other research areas. The panelists' backgrounds include biology, software reliability, security and dependable systems. Each panelist presented a statement which was discussed by NSPW participants.The discussion was lively and informative both during and after the panelists' statements and is reported in a later section of this summary.