The weakest link revisited

IEEE Security and Privacy

Volumn 1, Issue 2, 2003, Pages 72-76

  Arce, Iván ^a  

^a Core Security Technologies ^*  (Argentina)

Author keywords

[No Author keywords available]

Indexed keywords

NETWORK SECURITY; OPERATING SYSTEM SECURITY; SECURITY STRATEGIES; WORKSTATION SECURITY;

BANDWIDTH; COMPUTER CRIME; COMPUTER HARDWARE; COMPUTER OPERATING SYSTEMS; COMPUTER VIRUSES; CRYPTOGRAPHY; DECISION MAKING; HARD DISK STORAGE; LOCAL AREA NETWORKS; NETWORK PROTOCOLS; RESOURCE ALLOCATION; SOCIETIES AND INSTITUTIONS; STANDARDS; WEB BROWSERS;

SECURITY OF DATA;

EID: 3042745793     PISSN: 15407993     EISSN: None     Source Type: Journal    
DOI: 10.1109/MSECP.2003.1193216     Document Type: Review

References (16)

1. P.A. Myers, Subversion: The Neglected Aspect of Computer Security, master's thesis, Naval Postgraduate School, Monterey, Calif., 1980.
2. K. Thompson, "Reflections on Trusting Trust," Comm. ACM, vol. 27, no. 8, 1984, pp. 761-763.
3. S.M. Goheen and R.S. Fiske, OS/360 Computer Security Penetration Exercise, white paper WP-4467, MITRE, Bedford, Mass., 01730, 1972.
4. P.A. Karger and R.R. Schell, Multics Security Evaluation: Vulnerability Analysis, tech. report ESD-TR-74-193, vol. 2, Hanscom Air Force Base, Mass., 01731, 1974.
5. R.R. Schell, P.J. Downey, and G.J. Popek, Preliminary Notes on the Design of Secure Military Computer Systems, MCI-73-1, MITRE, Bedford, Mass., 01730, 1973.
6. F. Cohen, "Computer Viruses, Theory and Experiments," Computers & Security, vol. 6, no. 1, 1987, pp. 22-35.
7. J.O. Kephart and S.R. White, How Prevalent Are Computer Viruses?, IBM T.J. Watson Research Center, 1992; www.research.ibm.com/antivirus/SciPapers/ Kephart/DPMA92/dpma92.html.
8. S.R. White, J.O. Kephart, and D.M. Chess, "Computer Viruses: A Global Perspective," Proc. 5th Virus Bulletin Int'l Conf. (VB 95), Virus Bulletin Ltd., Abingdon, England, 1995; www.research.ibm.com/antivirus/ SciPapers/White/VB95/vb95.distrib.html.
9. T. Polk, and L. Bassham, Guide to the Selection of Anti-Virus Tools and Techniques, tech. report 800-5, Nat'l Inst. of Standards and Tech., Gaithersburg, Md., 20899, 1992.
10. Security Focus Online, "LibPNG Incorrect Offset Calculation Buffer Overflow Vulnerability," http://online.securityfocus.com/bid/6431.
11. Security Focus Online, "Multiple Browser Zero Width GIF Image Memory Corruption Vulnerability," http://online.securityfocus.com/bid/5665.
12. Security Focus Online, "WinZip Tar Hostile Destination Path Vulnerability," http://online.securityfocus.com/bid/6418.
13. Security Focus Online, "WinZip File Encryption Scheme Limited Key Space Vulnerability," www.securityfocus.com/bid/6805.
14. Security Focus Online, "mpg123 Invalid MP3 Header Memory Corruption Vulnerability," http://online.securityfocus.com/bid/6593.
15. Security Focus Online, "PGP Desktop Filename Buffer Overflow Vulnerability," http://online.securityfocus.com/bid/5656.
16. G. Richarte and I. Arce, "Lessons Learned Writing Exploits," Proc. CanSecWest Security Conf. 02, www.corest.com/common/showdoc.php?idx= 226&idxseccion=13 &idx-menu=35.