Large-Scale Scale Automated Software Diversity Diversity—Program Program Evolution Redux
Abstract: The software monoculture favors attackers over defenders, since it makes all target environments appear similar. Code Code-reuse reuse attacks, for example, rely on target hosts running identical software. Attackers use this assumption to their advantage by automating parts of creating an attack. This article presents largelarge scale automated software diversification as a means to shore up this vulnerability implied by our software monocultu monoculture. re. Besides describing an industrial-strength industrial implementation of automated software diversity, we introduce methods to objectively measure the effectiveness of diversity in general, and its potential to eliminate code-reuse reuse attacks in particular.