Towards A Formal Framework for Evaluating the Effectiveness of System Diversity when Applied to Security

R. Khoury, A. Hamou-Lhadj, M. Couture, "Towards A Formal Framework for Evaluating the Effectiveness of System Diversity when Applied to Security", In Proc. of the IEEE Symposium on Computational Intelligence for Security and Defence Applications (CISDA), IEEE Computational Intelligence, Ottawa, ON, Canada, 2012.

N-version programming has been shown to be an effective way to increase the reliability of systems. In this study, we examine the possibility of extending this approach to address security, rather than reliability concerns. We focus specifically on how to evaluate the efficiency of the use of diversity for security. We show that while several key elements must be taken into account when N-version programming is used for security rather than reliability, it is nonetheless possible to devise a reasoning framework to evaluate the efficiency of this development paradigm in a security context. This framework allows us to reason about the most effective way to use diversity for security.