Security Risks from a Software Monoculture

Abstract

A workshop of experts was convened on October 30, 2007 to consider the trade-offs associated with platform homogeneity in complex distributed systems. There were 18 speakers from industry and academia, and an additional 7 observers from AFCIO and AFOSR. The conclusion was that deploying a monocultures would be an effective way to defend against configuration attacks, that artificial diversity could then defend against some technology attacks (which monocultures amplify), and that some means would be required to defend against trust attacks. Research that needs to be pursued was identified.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Nov 15, 2008
Accession Number
ADA492371

Entities

People

  • Fred B. Schneider
  • Ken Birman

Organizations

  • Cornell University

Tags

Communities of Interest

  • Biomedical
  • Cyber

DTIC Thesaurus Topics

  • Air Force
  • Biological Sciences
  • Computer Programming
  • Computer Science
  • Computers
  • Cybersecurity
  • Data Centers
  • Education
  • Electronic Mail
  • Heterogeneity
  • Information Systems
  • Network Computing
  • Operating Systems
  • Standards
  • Vulnerability
  • Web Browsers
  • Web Service

Fields of Study

  • Computer science

Readers

  • Auditory Neuroscience/Auditory Physiology.
  • Research Science/Academic Research
  • Strategic Security Studies