Vulnerabilities Analysis

Vulnerabilities Analysis (1999)

by Matt Bishop

Citations:

User correction supplied by ryanakca

Datum	Value	Source
TITLE	Vulnerabilities Analysis	user correction
AUTHOR NAME	Matt Bishop	user correction
AUTHOR AFFIL	Department of Computer Science; University of California at Davis; One Shields Ave.	user correction
AUTHOR ADDR	Davis, CA 95616-8562	user correction
ABSTRACT	This note presents a new model for classifying vulnerabilities in computer systems. The model is structurally different than earlier models, It decomposes vulnerabilities into small parts, called "primitive conditions. " Our hypothesis is that by examining systems for these conditions, we can detect vulnerabilities. By preventing these conditions from holding, we can prevent vulnerabilities from occurring, even if we do not know that the vulnerability exists. A formal basis for this model is presented. An informal, experimental method of validation for non- secure systems is described. If the model accurately describes existing systems, it guides the development of tools to analyze systems for vulnerabilities. 1.	SVM HeaderParse 0.2
YEAR	1999	user correction
VENUE TYPE	CONFERENCE	INFERENCE
CITATIONS	15 found	ParsCit 1.0