Building diverse computer systems
Top Cited Papers
- 22 November 2002
- conference paper
- Published by Institute of Electrical and Electronics Engineers (IEEE)
Abstract
Diversity is an important source of robustness in biological systems. Computers, by contrast, are notable for their lack of diversity. Although homogeneous systems have many advantages, the beneficial effects of diversity in computing systems have been overlooked, specifically in the area of computer security. Several methods of achieving software diversity are discussed based on randomizations that respect the specified behavior of the program. Such randomization could potentially increase the robustness of software systems with minimal impact on convenience, usability, and efficiency. Randomization of the amount of memory allocated on a stack frame is shown to disrupt a simple buffer overflow attack.Keywords
This publication has 2 references indexed in Scilit:
- With microscope and tweezers: an analysis of the Internet virus of November 1988Published by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- Network security under siege: the timing attackComputer, 1996