Welcome to IEEE Xplore 2.0: Security through redundant data diversity

Cart | Sitemap | Help

Abstract


	BROWSE	SEARCH	IEEE XPLORE GUIDE	SUPPORT

View TOC

Security through redundant data diversity
Anh Nguyen-Tuong Evans, D. Knight, J.C. Cox, B. Davidson, J.W.
Dept. of Comput. Sci., Virginia Univ., Charlottesville, VA;

This paper appears in: Dependable Systems and Networks With FTCS and DCC, 2008. DSN 2008. IEEE International Conference on
Publication Date: 24-27 June 2008
On page(s): 187-196
Location: Anchorage, AK,
ISBN: 978-1-4244-2397-2
INSPEC Accession Number: 10221637
Digital Object Identifier: 10.1109/DSN.2008.4630087
Current Version Published: 2008-09-23

Abstract
Unlike other diversity-based approaches, N-variant systems thwart attacks without requiring secrets. Instead, they use redundancy (to require an attacker to simultaneously compromise multiple variants with the same input) and tailored diversity (to make it impossible to compromise all the variants with the same input for given attack classes). In this work, we develop a method for using data diversity in N-variant systems to provide high-assurance arguments against a class of data corruption attacks. Data is transformed in the variants so identical concrete data values have different interpretations. In order to corrupt the data without detection, an attacker would need to alter the corresponding data in each variant in a different way while sending the same inputs to all variants. We demonstrate our approach with a case study using that thwarts attacks that corrupt UID values.

Index Terms
Available to subscribers and IEEE members.

References
Available to subscribers and IEEE members.

Citing Documents
Available to subscribers and IEEE members.

You are not logged in.

Guests may access Abstract records free of charge.