Multi-version Execution Techniques for Increasing the Reliability and Security of Evolving Software

Date: 
01/01/2014 to 31/12/2019

One of the distinguishing characteristics of software systems is that they evolve: new patches are committed to software repositories and new versions are released to users on a continuous basis. Unfortunately, many of these changes bring unexpected failures that break the stability of the system or affect its security, and users face the uncomfortable choice between using an old stable version which misses recent features and bug fixes, and upgrading to a new version which improves the software in certain ways, only to introduce other bugs and security vulnerabilities.
 In this fellowship, I plan to investigate novel techniques for improving the reliability and security of evolving software, based on the idea of combining the execution of multiple software versions in such a way as to increase the reliability and security of the "multi-version" application and eliminate a large number of common bugs introduced by software updates.
 This is an ambitious proposal, which presents several challenges spanning the areas of software engineering, computer systems, and security: understanding how software evolves, and particularly the effects of incorrect updates on software evolution; addressing the technical challenges of multi-version execution such as creating an application-level sandboxing environment and devising lightweight record and replay techniques; designing error recovery strategies that effectively combine different software versions; and determining the applicability of multi-version execution to the different types of applications and code changes encountered in practice.

Week: 
Tuesday, 11 December, 2018

Project type:

News

SMESEC project Open Call for SMEs and SME associations
SMESEC has released an open call for SMEs and SME associations in order to validate SMESEC framework and at the same time improve their systems’ security.
 
SMESEC is inviting SMEs to participate in the validation of the SMESEC framework. By participating you not only have influence on the evaluation of the SMESEC framework, but also improve your own company security and get up to €20.000 of funds!

Future Events

Conference on Autonomous Security Systems
02/05/2019 to 03/05/2019
Image:

Ethical and Legal Aspects of Autonomous Security Systems

An international conference to be held at the University of Zurich in Switzerland on May 2nd-3rd, 2019, aims to explore the ethical and legal aspects of autonomous systems in the security sector. Among others, autonomous systems in cybersecurity are discussed in the conference, that is co-supported by CANVAS.

Keynote speakers

Philip G. Alston, New York University and UN Special Rapporteur
Extreme Poverty and Human Rights: Artificial Intelligence as a Threat to Human Rights?

Hermeneut project at Cybertech Tel Aviv 2019
02/05/2019
Image:

Cybertech is the cyber industry’s foremost B2B networking platform conducting industry-related events all around the globe, the go-to place to learn all about the latest technological innovations, threats, and solutions to combating threats within the global cyber arena.