{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,12,3]],"date-time":"2025-12-03T17:35:47Z","timestamp":1764783347752,"version":"3.40.3"},"publisher-location":"Berlin, Heidelberg","reference-count":30,"publisher":"Springer Berlin Heidelberg","isbn-type":[{"type":"print","value":"9783642271885"},{"type":"electronic","value":"9783642271892"}],"license":[{"start":{"date-parts":[[2011,1,1]],"date-time":"2011-01-01T00:00:00Z","timestamp":1293840000000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2011]]},"DOI":"10.1007\/978-3-642-27189-2_24","type":"book-chapter","created":{"date-parts":[[2011,12,2]],"date-time":"2011-12-02T14:52:18Z","timestamp":1322837538000},"page":"228-237","source":"Crossref","is-referenced-by-count":7,"title":["Diversity-Based Approaches to Software Systems Security"],"prefix":"10.1007","author":[{"given":"Abdelouahed","family":"Gherbi","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Robert","family":"Charpentier","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","reference":[{"key":"24_CR1","doi-asserted-by":"crossref","unstructured":"Atighetchi, M., Rubel, P., Pal, P.P., Chong, J., Sudin, L.: Networking aspects in the dpasa survivability architecture: An experience report. In: Fourth IEEE International Symposium on Network Computing and Applications (NCA 2005), pp. 219\u2013222. IEEE Computer Society (2005)","DOI":"10.1109\/NCA.2005.35"},{"issue":"1","key":"24_CR2","doi-asserted-by":"publisher","first-page":"11","DOI":"10.1109\/TDSC.2004.2","volume":"1","author":"A. Avizienis","year":"2004","unstructured":"Avizienis, A., Laprie, J.C., Randell, B., Landwehr, C.E.: Basic concepts and taxonomy of dependable and secure computing. IEEE Trans. Dependable Sec. Comput.\u00a01(1), 11\u201333 (2004)","journal-title":"IEEE Trans. Dependable Sec. Comput."},{"key":"24_CR3","doi-asserted-by":"crossref","unstructured":"Bain, C., Faatz, D.B., Fayad, A., Williams, D.E.: Diversity as a defense strategy in information systems. does evidence from previous events support such an approach? In: Gertz, M., Guldentops, E., Strous, L. (eds.) Fourth Working Conference on Integrity, Internal Control and Security in Information Systems, IICIS 2001. IFIP Conference Proceedings, vol.\u00a0211, pp. 77\u201394. Kluwer (2001)","DOI":"10.1007\/978-0-387-35583-2_5"},{"key":"24_CR4","doi-asserted-by":"crossref","unstructured":"Barrantes, E.G., Ackley, D.H., Palmer, T.S., Stefanovic, D., Zovi, D.D.: Randomized instruction set emulation to disrupt binary code injection attacks. In: Jajodia, S., Atluri, V., Jaeger, T. (eds.) Proceedings of the 10th ACM Conference on Computer and Communications Security, pp. 281\u2013289. ACM (2003)","DOI":"10.1145\/948109.948147"},{"key":"24_CR5","doi-asserted-by":"crossref","unstructured":"Bessani, A.N., Reiser, H.P., Sousa, P., Gashi, I., Stankovic, V., Distler, T., Kapitza, R., Daidone, A., Obelheiro, R.R.: Forever: Fault\/intrusion removal through evolution & recovery. In: Douglis, F. (ed.) ACM\/IFIP\/USENIX 9th International Middleware Conference, pp. 99\u2013101. ACM (2008)","DOI":"10.1145\/1462735.1462763"},{"key":"24_CR6","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-3-540-70542-0_1","volume-title":"Detection of Intrusions and Malware, and Vulnerability Assessment","author":"S. Bhatkar","year":"2008","unstructured":"Bhatkar, S., Sekar, R.: Data Space Randomization. In: Zamboni, D. (ed.) DIMVA 2008. LNCS, vol.\u00a05137, pp. 1\u201322. Springer, Heidelberg (2008)"},{"key":"24_CR7","doi-asserted-by":"crossref","unstructured":"Chong, J., Pal, P.P., Atighetchi, M., Rubel, P., Webber, F.: Survivability architecture of a mission critical system: The dpasa example. In: 21st Annual Computer Security Applications Conference, ACSAC 2005, pp. 495\u2013504. IEEE Computer Society (2005)","DOI":"10.1109\/CSAC.2005.54"},{"key":"24_CR8","volume-title":"USENIX-SS 2006: Proceedings of the 15th conference on USENIX Security Symposium","author":"B. Cox","year":"2006","unstructured":"Cox, B., Evans, D., Filipi, A., Rowanhill, J., Hu, W., Davidson, J., Knight, J., Nguyen-Tuong, A., Hiser, J.: N-variant systems: a secretless framework for security through diversity. In: USENIX-SS 2006: Proceedings of the 15th conference on USENIX Security Symposium. USENIX Association, Berkeley (2006)"},{"key":"24_CR9","first-page":"171","volume-title":"Computer Security, Dependability, and Assurance: From Needs to Solutions","author":"Y. Deswarte","year":"1998","unstructured":"Deswarte, Y., Kanoun, K., Laprie, J.C.: Diversity against accidental and deliberate faults. In: Ammann, P., Barnes, B.H., Jajodia, S., Sibley, E.H. (eds.) Computer Security, Dependability, and Assurance: From Needs to Solutions, November 1998, pp. 171\u2013181. IEEE Computer Press, Williamsburg (1998)"},{"key":"24_CR10","doi-asserted-by":"crossref","unstructured":"Deswarte, Y., Powell, D.: Intrusion tolerance for internet applications. In: Jacquart, R. (ed.) Building the Information Society, IFIP 18th World Computer Congress, pp. 241\u2013256. Kluwer (2004)","DOI":"10.1007\/978-1-4020-8157-6_22"},{"key":"24_CR11","unstructured":"Forrest, S., Somayaji, A., Ackley, D.H.: Building diverse computer systems. In: Workshop on Hot Topics in Operating Systems, pp. 67\u201372 (1997)"},{"key":"24_CR12","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"19","DOI":"10.1007\/11856214_2","volume-title":"Recent Advances in Intrusion Detection","author":"D. Gao","year":"2006","unstructured":"Gao, D., Reiter, M.K., Song, D.X.: Behavioral Distance Measurement Using Hidden Markov Models. In: Zamboni, D., Kr\u00fcgel, C. (eds.) RAID 2006. LNCS, vol.\u00a04219, pp. 19\u201340. Springer, Heidelberg (2006)"},{"key":"24_CR13","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"63","DOI":"10.1007\/11663812_4","volume-title":"Recent Advances in Intrusion Detection","author":"D. Gao","year":"2006","unstructured":"Gao, D., Reiter, M.K., Song, D.X.: Behavioral Distance for Intrusion Detection. In: Valdes, A., Zamboni, D. (eds.) RAID 2005. LNCS, vol.\u00a03858, pp. 63\u201381. Springer, Heidelberg (2006)"},{"key":"24_CR14","unstructured":"Gherbi, A., Charpentier, R., Couture, M.: Redundancy with diversity based software architectures for the detection and tolerance of cyber-attacks. Technical Memorandum TM-2010-287, Defence Reasearch and Development Canada - DRDC Valcartier (2010)"},{"key":"24_CR15","doi-asserted-by":"crossref","unstructured":"Hamou-Lhadj, A.: Measuring the complexity of traces using shannon entropy. In: Fifth International Conference on Information Technology: New Generations (ITNG 2008), pp. 489\u2013494. IEEE Computer Society (2008)","DOI":"10.1109\/ITNG.2008.169"},{"key":"24_CR16","doi-asserted-by":"crossref","unstructured":"Kc, G.S., Keromytis, A.D., Prevelakis, V.: Countering code-injection attacks with instruction-set randomization. In: Jajodia, S., Atluri, V., Jaeger, T. (eds.) Proceedings of the 10th ACM Conference on Computer and Communications Security, pp. 272\u2013280. ACM (2003)","DOI":"10.1145\/948143.948146"},{"issue":"1","key":"24_CR17","doi-asserted-by":"publisher","first-page":"12","DOI":"10.1109\/MSP.2009.11","volume":"7","author":"J.H. Lala","year":"2009","unstructured":"Lala, J.H., Schneider, F.B.: It monoculture security risks and defenses. IEEE Security & Privacy\u00a07(1), 12\u201313 (2009)","journal-title":"IEEE Security & Privacy"},{"issue":"11-12","key":"24_CR18","doi-asserted-by":"publisher","first-page":"1331","DOI":"10.1002\/spe.747","volume":"36","author":"P.P. Pal","year":"2006","unstructured":"Pal, P.P., Rubel, P., Atighetchi, M., Webber, F., Sanders, W.H., Seri, M., Ramasamy, H.V., Lyons, J., Courtney, T., Agbaria, A., Cukier, M., Gossett, J.M., Keidar, I.: An architecture for adaptive intrusion-tolerant applications. Softw., Pract. Exper.\u00a036(11-12), 1331\u20131354 (2006)","journal-title":"Softw., Pract. Exper."},{"key":"24_CR19","doi-asserted-by":"crossref","unstructured":"Reynolds, J.C., Just, J.E., Lawson, E., Clough, L.A., Maglich, R., Levitt, K.N.: The design and implementation of an intrusion tolerant system. In: International Conference on Dependable Systems and Networks (DSN 2002), pp. 285\u2013292. IEEE Computer Society (2002)","DOI":"10.1109\/DSN.2002.1028912"},{"key":"24_CR20","first-page":"239","volume-title":"DSN 2002: Proceedings of the 2002 International Conference on Dependable Systems and Networks","author":"D. Sames","year":"2002","unstructured":"Sames, D., Matt, B., Niebuhr, B., Tally, G., Whitmore, B., Bakken, D.E.: Developing a heterogeneous intrusion tolerant corba system. In: DSN 2002: Proceedings of the 2002 International Conference on Dependable Systems and Networks, pp. 239\u2013248. IEEE Computer Society, Washington, DC, USA (2002)"},{"key":"24_CR21","doi-asserted-by":"crossref","unstructured":"Shacham, H., Page, M., Pfaff, B., Goh, E.J., Modadugu, N., Boneh, D.: On the effectiveness of address-space randomization. In: Atluri, V., Pfitzmann, B., McDaniel, P.D. (eds.) Proceedings of the 11th ACM Conference on Computer and Communications Security, CCS 2004, pp. 298\u2013307. ACM (2004)","DOI":"10.1145\/1030083.1030124"},{"key":"24_CR22","unstructured":"Symantec: Symantec global internet security threat report \u2013 trends for 2008. Tech. Rep. Volume XIV, Symantec (2009)"},{"key":"24_CR23","doi-asserted-by":"publisher","first-page":"11","DOI":"10.1145\/1146269.1146273","volume-title":"NSPW 2005: Proceedings of the 2005 Workshop on New Security Paradigms","author":"C. Taylor","year":"2005","unstructured":"Taylor, C., Alves-Foss, J.: Diversity as a computer defense mechanism: A panel. In: NSPW 2005: Proceedings of the 2005 Workshop on New Security Paradigms, pp. 11\u201314. ACM, New York (2005)"},{"key":"24_CR24","unstructured":"Lloyd\u2019s Emerging Risk Team: Digital risks: Views of a changing risk landscape. Tech. Rep. Volume XIV, Lloyd\u2019s (April 2009)"},{"key":"24_CR25","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"43","DOI":"10.1007\/11663812_3","volume-title":"Recent Advances in Intrusion Detection","author":"E. Totel","year":"2006","unstructured":"Totel, E., Majorczyk, F., M\u00e9, L.: COTS Diversity Based Intrusion Detection and Application to Web Servers. In: Valdes, A., Zamboni, D. (eds.) RAID 2005. LNCS, vol.\u00a03858, pp. 43\u201362. Springer, Heidelberg (2006)"},{"key":"24_CR26","doi-asserted-by":"crossref","unstructured":"Valdes, A., Almgren, M., Cheung, S., Deswarte, Y., Dutertre, B., Levy, J., Sa\u00efdi, H., Stavridou, V., Uribe, T.E.: Dependable intrusion tolerance: Technology demo. In: 3rd DARPA Information Survivability Conference and Exposition (DISCEX-III 2003), pp. 128\u2013130. IEEE Computer Society (2003)","DOI":"10.1109\/DISCEX.2003.1194946"},{"issue":"4","key":"24_CR27","doi-asserted-by":"publisher","first-page":"54","DOI":"10.1109\/MSP.2006.95","volume":"4","author":"P. Ver\u00edssimo","year":"2006","unstructured":"Ver\u00edssimo, P., Neves, N.F., Cachin, C., Poritz, J.A., Powell, D., Deswarte, Y., Stroud, R.J., Welch, I.: Intrusion-tolerant middleware: the road to automatic security. IEEE Security & Privacy\u00a04(4), 54\u201362 (2006)","journal-title":"IEEE Security & Privacy"},{"key":"24_CR28","volume-title":"Foundations of Intrusion Tolerant Systems","author":"F. Wang","year":"2003","unstructured":"Wang, F., Jou, F., Gong, F., Sargor, C., Goseva-Popstojanova, K., Trivedi, K.: Sitar: A scalable intrusion-tolerant architecture for distributed services. In: Foundations of Intrusion Tolerant Systems. IEEE Computer Society, Los Alamitos (2003)"},{"key":"24_CR29","unstructured":"Weatherwax, E., Knight, J., Nguyen-Tuong, A.: A Model of Secretless Security in N-Variant Systems. In: Workshop on Compiler and Architectural Techniques for Application Reliability and Security (CATARS), In the 39th Annual IEEE\/IFIP International Conference on Dependable Systems and Network, DSN 2009 (2009)"},{"key":"24_CR30","unstructured":"Whitehouse, O.: An analysis of address space layout randomization on windows vista. Tech. rep., Symantec (2007)"}],"container-title":["Communications in Computer and Information Science","Security Technology"],"original-title":[],"language":"en","link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-642-27189-2_24","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,3,14]],"date-time":"2025-03-14T19:15:43Z","timestamp":1741979743000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-642-27189-2_24"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2011]]},"ISBN":["9783642271885","9783642271892"],"references-count":30,"URL":"https:\/\/doi.org\/10.1007\/978-3-642-27189-2_24","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2011]]}}}