• 主题
高级搜索  >
历史搜索 清空历史
首页> 外文会议>European Symposium on Research in Computer Security(ESORICS 2004); 20040913-15; Sophia Antipolis(FR) >Redundancy and Diversity in Security
【24h】

Redundancy and Diversity in Security

机译:安全中的冗余和多样性

获取原文
获取原文并翻译 | 示例
页面导航
  • 摘要
  • 著录项
  • 相似文献
  • 相关主题

摘要

Redundancy and diversity are commonly applied principies for fault tolerance against accidental faults. Their use in security, which is attracting increasing interest, is less general and less of an accepted principie. In particular, redundancy without diversity is often argued to be useless against systematic attack, and diversity to be of dubious value. This paper discusses their roles and limits, and to what extent lessons from research on their use for reliability can be applied to security, in areas such as intrusion detection. We take a probabilistic approach to the problem, and argue its validity for security. We then discuss the various roles of redundancy and diversity for security, and show that some basic insights from probabilistic modelling in reliability and safety indeed apply to examples of design for security. We discuss the factors affecting the efficacy of redundancy and diversity, the role of "independence" between layers of defense, and some of the tra! de-offs facing designers.
机译:冗余和多样性是针对意外故障的容错性常用的原则。它们在安全中的使用正引起越来越多的关注,但它的使用范围越来越小,被接受的原理也越来越少。特别是,没有多样性的冗余经常被认为对系统攻击没有用,而多样性具有可疑的价值。本文讨论了它们的作用和局限性,以及在将其用于可靠性方面的研究成果可以在多大程度上应用于入侵检测等领域的安全性。我们对这个问题采取概率方法,并论证其对安全性的有效性。然后,我们讨论了冗余和多样性对安全的各种作用,并表明,概率模型在可靠性和安全性方面的一些基本见解确实适用于安全性设计示例。我们讨论了影响冗余和多样性效力的因素,防御层之间“独立”的作用以及某些因素!设计师面临的挑战。

著录项

相似文献

  • 外文文献
  • 中文文献
  • 专利
获取原文

客服邮箱:kefu@zhangqiaokeyan.com

京公网安备:11010802029741号 ICP备案号:京ICP备15016152号-6 六维联合信息科技 (北京) 有限公司©版权所有

  • 客服微信

  • 服务号