Software diversity can be utilized in cyberspace security to defend against the zero-day attacks. Existing researches have proved the effectiveness of diversity in bringing security benefits, but few of them touch the problem that whether there is a positive correlation between the security and the diversity. In addition, there is little guidance on how to construct an effective diversified system. For that, this paper develops two diversity metrics based on system attribute matrix, proposes a diversity measurement and verifies the effectiveness of the measurement. Through several simulations on the diversified systems which use voting strategy, the relationship between diversity and security is analyzed. The results show that there is an overall positive correlation between security and diversity. Though some cases are against the correlation, further analysis is made to explain the phenomenon. In addition, the effect of voting strategy is also discussed through simulations. The results show that the voting strategy have a dominant impact on the security, which implies that security benefits can be obtained only with proper strategies. According to the conclusions, some guidance is provided in constructing a more diversified as well as securer system.
Qing TONG
National Digital Switching System Engineering and Technological Research and Development Center
Yunfei GUO
National Digital Switching System Engineering and Technological Research and Development Center
Hongchao HU
National Digital Switching System Engineering and Technological Research and Development Center
Wenyan LIU
National Digital Switching System Engineering and Technological Research and Development Center
Guozhen CHENG
National Digital Switching System Engineering and Technological Research and Development Center
Ling-shu LI
National Digital Switching System Engineering and Technological Research and Development Center
The copyright of the original papers published on this site belongs to IEICE. Unauthorized use of the original or translated papers is prohibited. See IEICE Provisions on Copyright for details.
Copy
Qing TONG, Yunfei GUO, Hongchao HU, Wenyan LIU, Guozhen CHENG, Ling-shu LI, "A Diversity Metric Based Study on the Correlation between Diversity and Security" in IEICE TRANSACTIONS on Information,
vol. E102-D, no. 10, pp. 1993-2003, October 2019, doi: 10.1587/transinf.2018EDP7414.
Abstract: Software diversity can be utilized in cyberspace security to defend against the zero-day attacks. Existing researches have proved the effectiveness of diversity in bringing security benefits, but few of them touch the problem that whether there is a positive correlation between the security and the diversity. In addition, there is little guidance on how to construct an effective diversified system. For that, this paper develops two diversity metrics based on system attribute matrix, proposes a diversity measurement and verifies the effectiveness of the measurement. Through several simulations on the diversified systems which use voting strategy, the relationship between diversity and security is analyzed. The results show that there is an overall positive correlation between security and diversity. Though some cases are against the correlation, further analysis is made to explain the phenomenon. In addition, the effect of voting strategy is also discussed through simulations. The results show that the voting strategy have a dominant impact on the security, which implies that security benefits can be obtained only with proper strategies. According to the conclusions, some guidance is provided in constructing a more diversified as well as securer system.
URL: https://global.ieice.org/en_transactions/information/10.1587/transinf.2018EDP7414/_p
Copy
@ARTICLE{e102-d_10_1993,
author={Qing TONG, Yunfei GUO, Hongchao HU, Wenyan LIU, Guozhen CHENG, Ling-shu LI, },
journal={IEICE TRANSACTIONS on Information},
title={A Diversity Metric Based Study on the Correlation between Diversity and Security},
year={2019},
volume={E102-D},
number={10},
pages={1993-2003},
abstract={Software diversity can be utilized in cyberspace security to defend against the zero-day attacks. Existing researches have proved the effectiveness of diversity in bringing security benefits, but few of them touch the problem that whether there is a positive correlation between the security and the diversity. In addition, there is little guidance on how to construct an effective diversified system. For that, this paper develops two diversity metrics based on system attribute matrix, proposes a diversity measurement and verifies the effectiveness of the measurement. Through several simulations on the diversified systems which use voting strategy, the relationship between diversity and security is analyzed. The results show that there is an overall positive correlation between security and diversity. Though some cases are against the correlation, further analysis is made to explain the phenomenon. In addition, the effect of voting strategy is also discussed through simulations. The results show that the voting strategy have a dominant impact on the security, which implies that security benefits can be obtained only with proper strategies. According to the conclusions, some guidance is provided in constructing a more diversified as well as securer system.},
keywords={},
doi={10.1587/transinf.2018EDP7414},
ISSN={1745-1361},
month={October},}
Copy
TY - JOUR
TI - A Diversity Metric Based Study on the Correlation between Diversity and Security
T2 - IEICE TRANSACTIONS on Information
SP - 1993
EP - 2003
AU - Qing TONG
AU - Yunfei GUO
AU - Hongchao HU
AU - Wenyan LIU
AU - Guozhen CHENG
AU - Ling-shu LI
PY - 2019
DO - 10.1587/transinf.2018EDP7414
JO - IEICE TRANSACTIONS on Information
SN - 1745-1361
VL - E102-D
IS - 10
JA - IEICE TRANSACTIONS on Information
Y1 - October 2019
AB - Software diversity can be utilized in cyberspace security to defend against the zero-day attacks. Existing researches have proved the effectiveness of diversity in bringing security benefits, but few of them touch the problem that whether there is a positive correlation between the security and the diversity. In addition, there is little guidance on how to construct an effective diversified system. For that, this paper develops two diversity metrics based on system attribute matrix, proposes a diversity measurement and verifies the effectiveness of the measurement. Through several simulations on the diversified systems which use voting strategy, the relationship between diversity and security is analyzed. The results show that there is an overall positive correlation between security and diversity. Though some cases are against the correlation, further analysis is made to explain the phenomenon. In addition, the effect of voting strategy is also discussed through simulations. The results show that the voting strategy have a dominant impact on the security, which implies that security benefits can be obtained only with proper strategies. According to the conclusions, some guidance is provided in constructing a more diversified as well as securer system.
ER -