Authors
Matt Bishop
Publication date
1999/9
Journal
Proceedings of the Recent Advances in intrusion Detection
Pages
125-136
Description
This note presents a new model for classifying vulnerabilities in computer systems. The model is structurally different than earlier models, It decomposes vulnerabilities into small parts, called" primitive conditions." Our hypothesis is that by examining systems for these conditions, we can detect vulnerabilities. By preventing these conditions from holding, we can prevent vulnerabilities from occurring, even if we do not know that the vulnerability exists. A formal basis for this model is presented. An informal, experimental method of validation for non-secure systems is described. If the model accurately describes existing systems, it guides the development of tools to analyze systems for vulnerabilities.
Total citations
Scholar articles
M Bishop - Proceedings of the Recent Advances in intrusion …, 1999