The original paper is in English. Non-English content has been machine-translated and may contain typographical errors or mistranslations. ex. Some numerals are expressed as "XNUMX".
Copyrights notice
The original paper is in English. Non-English content has been machine-translated and may contain typographical errors or mistranslations. Copyrights notice
A diversidade de software pode ser utilizada na segurança do ciberespaço para defesa contra ataques de dia zero. As pesquisas existentes comprovaram a eficácia da diversidade em trazer benefícios de segurança, mas poucas delas abordam o problema de saber se existe uma correlação positiva entre a segurança e a diversidade. Além disso, há pouca orientação sobre como construir um sistema diversificado e eficaz. Para isso, este artigo desenvolve duas métricas de diversidade baseadas na matriz de atributos do sistema, propõe uma medição de diversidade e verifica a eficácia da medição. Através de diversas simulações nos sistemas diversificados que utilizam estratégia de voto, é analisada a relação entre diversidade e segurança. Os resultados mostram que existe uma correlação global positiva entre segurança e diversidade. Embora alguns casos sejam contra a correlação, análises adicionais são feitas para explicar o fenômeno. Além disso, o efeito da estratégia de votação também é discutido através de simulações. Os resultados mostram que a estratégia de voto tem um impacto dominante na segurança, o que implica que os benefícios de segurança só podem ser obtidos com estratégias adequadas. De acordo com as conclusões, são fornecidas algumas orientações na construção de um sistema mais diversificado e mais seguro.
Qing TONG
National Digital Switching System Engineering and Technological Research and Development Center
Yunfei GUO
National Digital Switching System Engineering and Technological Research and Development Center
Hongchao HU
National Digital Switching System Engineering and Technological Research and Development Center
Wenyan LIU
National Digital Switching System Engineering and Technological Research and Development Center
Guozhen CHENG
National Digital Switching System Engineering and Technological Research and Development Center
Ling-shu LI
National Digital Switching System Engineering and Technological Research and Development Center
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Copiar
Qing TONG, Yunfei GUO, Hongchao HU, Wenyan LIU, Guozhen CHENG, Ling-shu LI, "A Diversity Metric Based Study on the Correlation between Diversity and Security" in IEICE TRANSACTIONS on Information,
vol. E102-D, no. 10, pp. 1993-2003, October 2019, doi: 10.1587/transinf.2018EDP7414.
Abstract: Software diversity can be utilized in cyberspace security to defend against the zero-day attacks. Existing researches have proved the effectiveness of diversity in bringing security benefits, but few of them touch the problem that whether there is a positive correlation between the security and the diversity. In addition, there is little guidance on how to construct an effective diversified system. For that, this paper develops two diversity metrics based on system attribute matrix, proposes a diversity measurement and verifies the effectiveness of the measurement. Through several simulations on the diversified systems which use voting strategy, the relationship between diversity and security is analyzed. The results show that there is an overall positive correlation between security and diversity. Though some cases are against the correlation, further analysis is made to explain the phenomenon. In addition, the effect of voting strategy is also discussed through simulations. The results show that the voting strategy have a dominant impact on the security, which implies that security benefits can be obtained only with proper strategies. According to the conclusions, some guidance is provided in constructing a more diversified as well as securer system.
URL: https://global.ieice.org/en_transactions/information/10.1587/transinf.2018EDP7414/_p
Copiar
@ARTICLE{e102-d_10_1993,
author={Qing TONG, Yunfei GUO, Hongchao HU, Wenyan LIU, Guozhen CHENG, Ling-shu LI, },
journal={IEICE TRANSACTIONS on Information},
title={A Diversity Metric Based Study on the Correlation between Diversity and Security},
year={2019},
volume={E102-D},
number={10},
pages={1993-2003},
abstract={Software diversity can be utilized in cyberspace security to defend against the zero-day attacks. Existing researches have proved the effectiveness of diversity in bringing security benefits, but few of them touch the problem that whether there is a positive correlation between the security and the diversity. In addition, there is little guidance on how to construct an effective diversified system. For that, this paper develops two diversity metrics based on system attribute matrix, proposes a diversity measurement and verifies the effectiveness of the measurement. Through several simulations on the diversified systems which use voting strategy, the relationship between diversity and security is analyzed. The results show that there is an overall positive correlation between security and diversity. Though some cases are against the correlation, further analysis is made to explain the phenomenon. In addition, the effect of voting strategy is also discussed through simulations. The results show that the voting strategy have a dominant impact on the security, which implies that security benefits can be obtained only with proper strategies. According to the conclusions, some guidance is provided in constructing a more diversified as well as securer system.},
keywords={},
doi={10.1587/transinf.2018EDP7414},
ISSN={1745-1361},
month={October},}
Copiar
TY - JOUR
TI - A Diversity Metric Based Study on the Correlation between Diversity and Security
T2 - IEICE TRANSACTIONS on Information
SP - 1993
EP - 2003
AU - Qing TONG
AU - Yunfei GUO
AU - Hongchao HU
AU - Wenyan LIU
AU - Guozhen CHENG
AU - Ling-shu LI
PY - 2019
DO - 10.1587/transinf.2018EDP7414
JO - IEICE TRANSACTIONS on Information
SN - 1745-1361
VL - E102-D
IS - 10
JA - IEICE TRANSACTIONS on Information
Y1 - October 2019
AB - Software diversity can be utilized in cyberspace security to defend against the zero-day attacks. Existing researches have proved the effectiveness of diversity in bringing security benefits, but few of them touch the problem that whether there is a positive correlation between the security and the diversity. In addition, there is little guidance on how to construct an effective diversified system. For that, this paper develops two diversity metrics based on system attribute matrix, proposes a diversity measurement and verifies the effectiveness of the measurement. Through several simulations on the diversified systems which use voting strategy, the relationship between diversity and security is analyzed. The results show that there is an overall positive correlation between security and diversity. Though some cases are against the correlation, further analysis is made to explain the phenomenon. In addition, the effect of voting strategy is also discussed through simulations. The results show that the voting strategy have a dominant impact on the security, which implies that security benefits can be obtained only with proper strategies. According to the conclusions, some guidance is provided in constructing a more diversified as well as securer system.
ER -