A Diversity Metric Based Study on the Correlation between Diversity and Security

Tong, Qingyi; Guo, Yunfei; Hu, Hongchao; Liu, Wenyan; Cheng, Guangming; Li, Ling-shu

doi:10.1587/transinf.2018edp7414

Cited by 3 publications

(2 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To mitigate shared vulnerabilities under the microservice architecture, we have established a diversified microservices deployment model to maximize the resilience of the system. Combined with the problem of load balancing, a microservice deployment algorithm based on load balancing and diversity is proposed, which reduces the service's dependence on the underlying mirror by abundant diversity and avoids the overreliance of microservices on a single node through decentralized deployment, while taking into account load balancing [31].…”

Section: Discussionmentioning

confidence: 99%

A Microservice Resilience Deployment Mechanism Based on Diversity

Wang

Xing

et al. 2022

Security and Communication Networks

View full text Add to dashboard Cite

The microservice architecture has many advantages, such as technology heterogeneity, isolation, scalability, simple deployment, and convenient optimization. These advantages are important as we can use diversity and redundancy to improve the resilience of software system. It is necessary to study the method of improving the resilience of software system by diversity implementation and redundant deployment of software core components based on microservice framework. How to optimize the diversity deployment of microservices is a key problem to maximize system resilience and make full use of resources. To solve this problem, an efficient microservice diversity deployment mechanism is proposed in this paper. Firstly, we creatively defined a load balancing indicator and a diversity indicator. Based on this, a diversified microservices deployment model is established to maximize the resilience and the resource utilization of the system. Secondly, combined with load balancing, a microservice deployment algorithm based on load balance and diversity is proposed, which reduces the service’s dependence on the underlying mirror by enriching diversity and avoids the overreliance of microservices on a single node through decentralized deployment, while taking into account load balancing. Finally, we conduct experiments to evaluate the performance of the proposed algorithm. The results demonstrate that the proposed algorithm outperforms other algorithms.

show abstract

Section: Discussionmentioning

confidence: 99%

A Microservice Resilience Deployment Mechanism Based on Diversity

Wang

Xing

et al. 2022

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…Measuring the variants' diversity. The authors ofLiu et al (2018),Gu et al (2017), andTong et al (2019) divided variants into components such as processor, operating system, application software, protocol stack, etc., and measured the differences of components separately. From a security perspective, the works ofZhang et al (2020), andLi et al (2018) used symbiosis vulnerabilities to compare the similarity between the two variants.…”

mentioning

confidence: 99%

Security Enhancement Through Compiler-Assisted Software Diversity With Deep Reinforcement Learning

Wang

Jin

Pang

et al. 2022

International Journal of Digital Crime and Forensics

View full text Add to dashboard Cite

Traditional software defenses take corresponding actions after the attacks are discovered. The defenders in this situation are comparatively passive because the attackers may try many different ways to find vulnerability and bugs but the software remains static. This leads to the imbalance between offense and defense. Software diversity alleviates the current threats by implementing a heterogeneous software system. The N-Variant eXecution (NVX) systems, effective and applicable runtime diversifying methods, apply multiple variants to imporove software security. Higher diversity can lead to less vulnerabilities that attacks can exploit. However, runtime diversifying methods such as address randomization and reverse stack can only provide limited diversity to the system. Thus, we enhance the diversity of variants with a compiler-assisted approach. We use a Deep Reinforcement Learning-based algorithm to generate variants, ensuring the high diversity of the system. For different numbers of variants, we show the results of the Deep Q Network algorithm under different parameter settings.

show abstract

A Security SLA Negotiation Mechanism Oriented to Mimic Cloud

Zeng

Zhou

2021

2021 International Conference on Machine Learning and Intelligent Systems Engineering (MLISE)

View full text Add to dashboard Cite

A Diversity Metric Based Study on the Correlation between Diversity and Security

Cited by 3 publications

References 23 publications

A Microservice Resilience Deployment Mechanism Based on Diversity

A Microservice Resilience Deployment Mechanism Based on Diversity

Security Enhancement Through Compiler-Assisted Software Diversity With Deep Reinforcement Learning

A Security SLA Negotiation Mechanism Oriented to Mimic Cloud

Contact Info

Product

Resources

About