Redundancy and Diversity in Security Export

@incollection{citeulike:2499975, abstract = {Redundancy and diversity are commonly applied principles for fault tolerance against accidental faults. Their use in security, which is attracting increasing interest, is less general and less of an accepted principle. In particular, redundancy without diversity is often argued to be useless against systematic attack, and diversity to be of dubious value. This paper discusses their roles and limits, and to what extent lessons from research on their use for reliability can be applied to security, in areas such as intrusion detection. We take a probabilistic approach to the problem, and argue its validity for security. We then discuss the various roles of redundancy and diversity for security, and show that some basic insights from probabilistic modelling in reliability and safety indeed apply to examples of design for security. We discuss the factors affecting the efficacy of redundancy and diversity, the role of ”independence” between layers of defense, and some of the tra! de-offs facing designers.}, author = {Littlewood, Bev and Strigini, Lorenzo}, citeulike-article-id = {2499975}, citeulike-linkout-0 = {http://www.springerlink.com/content/b1755fe9ar08txy3}, journal = {Computer Security – ESORICS 2004}, pages = {423--438}, posted-at = {2009-07-12 14:19:30}, priority = {2}, title = {Redundancy and Diversity in Security}, url = {http://www.springerlink.com/content/b1755fe9ar08txy3}, year = {2004} }

TY - CHAP ID - citeulike:2499975 L3 - citeulike-article-id:2499975 N2 - Redundancy and diversity are commonly applied principles for fault tolerance against accidental faults. Their use in security, which is attracting increasing interest, is less general and less of an accepted principle. In particular, redundancy without diversity is often argued to be useless against systematic attack, and diversity to be of dubious value. This paper discusses their roles and limits, and to what extent lessons from research on their use for reliability can be applied to security, in areas such as intrusion detection. We take a probabilistic approach to the problem, and argue its validity for security. We then discuss the various roles of redundancy and diversity for security, and show that some basic insights from probabilistic modelling in reliability and safety indeed apply to examples of design for security. We discuss the factors affecting the efficacy of redundancy and diversity, the role of ”independence” between layers of defense, and some of the tra! de-offs facing designers. JF - Computer Security – ESORICS 2004 EP - 438 TI - Redundancy and Diversity in Security SP - 423 AU - Littlewood, Bev AU - Strigini, Lorenzo PY - 2004/// UR - http://www.springerlink.com/content/b1755fe9ar08txy3 ER -