Tailored source code transformations to synthesize computationally diverse program variants

Baudry, Benoît; Allier, Simon; Monperrus, Martin

doi:10.1145/2610384.2610415

Cited by 27 publications

(24 citation statements)

References 28 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…For example, an approach synthesizing program variants automatically has been developed and proposed to increase system security [33]. At a given time, this technique randomly selects one program from a population of computationally diverse program variants (Sosies) to make it hard for hackers to focus on program features to attack.…”

Section: Discussionmentioning

confidence: 99%

A Diversity Model Based on Failure Distribution and Its Application in Safety Cases

Chen

May

2014

2014 Eighth International Conference on Software Security and Reliability

View full text Add to dashboard Cite

Abstract-This work develops a new basis for evaluating the reliability benefits of diverse software, based on fault injection testing. In particular, the work investigates new forms of argumentation that could in principle be used to justify diversity as a basis for the construction of safety claims. Failure distributions of two versions of diverse software under various fault conditions are revealed separately by fault injection methods, and then the common failure probability of the version-pair can be estimated. The approach is justified theoretically, and cross validated with other work. This method is also used to explain the fundamental influence of failure distributions on diversity. Furthermore, the unique capabilities of the method are demonstrated by implementation of the fault injection test on a program pair Index Terms-Software Diversity, Safety Case, Safety Critical System, Fault Injection, Multi-version, Reliability. Abbreviations: AFRAverage failure rate CFP Common failure probability EL Eckhardt and Lee FD Failure distribution FI Fault injection IFP s-Independent failures model LM Littlewood and Miller MR Meulen and Revilla MSF Mmodified sign function NVP New version-pair RI Reliability improvement SFP

show abstract

Section: Discussionmentioning

confidence: 99%

A Diversity Model Based on Failure Distribution and Its Application in Safety Cases

Chen

May

2014

2014 Eighth International Conference on Software Security and Reliability

View full text Add to dashboard Cite

show abstract

“…Using the diversification technique described in [46], we synthesized 20 sosies of the MdMS workers. These sosies are used to execute the application with a varying number of back-ends (from 4 to 10).…”

Section: Methodsmentioning

confidence: 99%

“…This proactive diversification of MdMS targets safety [44] and security [45] purposes. In particular, we have used our recent technique for the automatic synthesis of sosie programs [46] in order to automatically diversify the workers. A sosie is a variant of a program that exhibits the same functionality (passes the same test suite) and a diverse computation (different control or data flow).…”

Section: Use Case Presentationmentioning

confidence: 99%

ScapeGoat: Spotting abnormal resource usage in component-based reconfigurable software systems

Gonzalez-Herrera

Bourcier

Daubert

et al. 2016

Journal of Systems and Software

View full text Add to dashboard Cite

Modern component frameworks support continuous deployment and simultaneous execution of multiple software components on top of the same virtual machine. However, isolation between the various components is limited. A faulty version of any one of the software components can compromise the whole system by consuming all available resources. In this paper, we address the problem of efficiently identifying faulty software components running simultaneously in a single virtual machine. Current solutions that perform permanent and extensive monitoring to detect anomalies induce high overhead on the system, and can, by themselves, make the system unstable. In this paper we present an optimistic adaptive monitoring system to determine the faulty components of an application. Suspected components are finely analyzed by the monitoring system, but only when required. Unsuspected components are left untouched and execute normally. Thus, we perform localized just-in-time monitoring that decreases the accumulated overhead of the monitoring system. We evaluate our approach on two case studies against a state-of-the-art monitoring system and show that our technique correctly detects faulty components, while reducing overhead by an average of 93%.

show abstract

“…Schulte et al touch on the ways in which the software mutational robustness they document might be employed to generate software diversity. Their method has already been employed and cited during the time interval between the online publication of their paper and the printed version [4].Our second paper on robustness returns to the original context in which robustness was conceived: homeostasis, the organism as a robust dynamical system. The paper "Self-repair ability of evolved self-assembling systems in cellular automata" [13] by CanÖztürkeri and Colin Johnson investigates self-repair, a form of robustness in which systems are "able to reconfigure themselves following disruptions to bring them back into a defined normal state."…”

mentioning

confidence: 99%

mentioning

confidence: 99%

Evolvability and robustness in artificial evolving systems: three perturbations

Altenberg

2014

Genet Program Evolvable Mach

View full text Add to dashboard Cite

This special issue focuses on two emergent properties of artificial evolutionary systems: evolvability and robustness. The three papers presented here expand the subject in distinct directions-two dealing with robustness, and one with evolvability.Short-and long-term evolution depends on the variational properties of the systems: how changes to their structure map to changes in their behavior. Robustness and evolvability are key variational properties that themselves show evolutionary dynamics. This journal's focus is on artificial evolutionary systems that are active-which take inputs from their environment and act on them to produce their behavior. Active systems are an especially rich domain for the evolution of robustness and evolvability because the size and structure of their data objects are often open-ended.Evolvability and robustness were never part of the classical 'Modern Synthesis' which melded Darwin's theory of evolution by natural selection with Mendel's theory of heredity. The reason that evolvability was not an issue was because it was presumed at the outset: empirical experiences with quantitative genetics and selective breeding produced a consensus that phenotypic variation was effectively like a gas which could flow into any selective bottle; e.g. as Francisco Ayala wrote in 1978, "The fact that artificial selection works almost every time it is attempted indicates there is genetic variation in populations for virtually every characteristic of the organism" [3]. It was with the advent of evolutionary computation-the attempt to solve engineering problems by mimicking Darwinian evolution and Mendelian genetics-that it became widely clear that evolvability could not be taken for granted, but was in fact the primary design challenge for evolutionary algorithms. Perhaps it was for this reason that the evolutionary computation literature was more welcoming to early theory on the evolution of evolvability [1] than the evolutionary biology literature.Robustness was also not a part of the Modern Synthesis, for the reason that there was no empirical experience of robustness as part of the evolutionary process. Robustness as a concept for physiological functioning was introduced as early as the 1920s by * In press in Genetic Programming and Evolvable Machines 1 2 Cannon [5] under the term 'homeostasis'. But the first ideas about mutational robustness appear in the 1940s work of Schmalhausen [15] and Waddington [19].Early pioneers in the modern theory of the evolution of evolvability and robustness include Riedl [14], and Conrad [6,7], who described the 'mutation-absorption model of the enzyme', and the 'self-facilitation' of evolution. Two papers that helped initiate the growth in interest in mutational robustness are Nimwegen et al. [12] and Ancel and Fontana [2]. Today evolvability and robustness are active areas of research, with some 170 papers published in the last year that mention the "evolution of evolvability", while some 250 papers mention "mutational robustness" [Google Scholar]. Masel and Tr...

show abstract

Tailored source code transformations to synthesize computationally diverse program variants

Cited by 27 publications

References 28 publications

A Diversity Model Based on Failure Distribution and Its Application in Safety Cases

A Diversity Model Based on Failure Distribution and Its Application in Safety Cases

ScapeGoat: Spotting abnormal resource usage in component-based reconfigurable software systems

Evolvability and robustness in artificial evolving systems: three perturbations

Contact Info

Product

Resources

About