Title :
Multitier Diversification in Web-Based Software Applications
Author :
Allier, Simon ; Barais, Olivier ; Baudry, Benoit ; Bourcier, Johann ; Daubert, Erwan ; Fleurey, Franck ; Monperrus, Martin ; Hui Song ; Tricoire, Maxime
Abstract :
Web application development benefits massively from modular architectures and reuse. This excellent software engineering practice is also the source of a new form of monoculture in application-level co de, which creates a potential risk for dependability. Researchers propose using software diversification in multiple components of Web applications to reconcile the tension between reuse and dependability. This article identifies key enablers for the effective diversification of software, especially at the application-code level. It´s possible to combine different software diversification strategies, from deploying different vendor solutions to fine-grained code transformations, to provide different forms of protection.
Keywords :
Internet; software engineering; Web-based software applications; application-level code; fine-grained code transformations; modular architectures; modular reuse; multitier diversification; software diversification; software engineering practice; vendor solutions; Computer architecture; Diversity reception; Internet; Operating systems; Servers; Software engineering; Web services; Web applications; dependability; security; software diversity; software engineering; software monoculture;
Journal_Title :
Software, IEEE
DOI :
10.1109/MS.2014.150
