Vulnerabilities Analysis
Sp-321 on 04 Dec, 1500-1550.

This talk presents a new model for classifying vulnerabilities in computer systems. The model decomposes vulnerabilities into small parts called "primitive conditions." Our hypothesis is that by examining systems for these conditions, we can detect vulnerabilities. By preventing these conditions from holding, we can prevent vulnerabilities from occurring, even if we do not know that the vulnerability exists. We also present a formal basis for this model. The primitive conditions also enable programs to undergo "property based testing". This method of testing determines whether a program satisfies a given set of security properties

About Dr. Matt Bishop
Dr. Bishop is an associate professor in the Department of Computer Science at the University of California at Davis, as well as a co-director of the U.C. Davis Computer Security Laboratory. Matt Bishop received his Ph.D. in computer science from Purdue University in 1984, where he specialized in computer security. He was a research scientist at the Research Institute of Advanced Computer Science and was on the faculty at Dartmouth College before joining the University of California at Davis. He is active in information assurance education, and is a charter member of the Colloquium on Information Systems Security Education. His textbook, Computer Security: Art and Science, was published in December 2002 by Addison-Wesley-Longman. Dr. Bishop teaches software engineering, machine architecture, operating systems, programming, and (of course) computer security.