Introduction to Computer Security draws upon Bishop's widely praised Computer Security: Art and Science, without the highly complex and mathematical coverage that most undergraduate students would find difficult or unnecessary. The result: the field's most concise, accessible, and useful introduction.

Matt Bishop thoroughly introduces fundamental techniques and principles for modeling and analyzing security. Readers learn how to express security requirements, translate requirements into policies, implement mechanisms that enforce policy, and ensure that policies are effective. Along the way, the author explains how failures may be exploited by attackers--and how attacks may be discovered, understood, and countered. Supplements available including slides and solutions.

Preface.

Goals.

Philosophy.

Organization.

Differences Between this Book and Computer Security: Art and Science.

Special Acknowledgment.

Acknowledgments.

1. An Overview of Computer Security.

The Basic Components.

Threats.

Policy and Mechanism.

Assumptions and Trust.

Assurance.

Operational Issues.

Human Issues.

Tying It All Together.

Summary.

Further Reading.

Exercises.

2. Access Control Matrix.

Protection State.

Access Control Matrix Model.

Protection State Transitions.

Conditional Commands.

Summary.

Further Reading.

Exercises.

3. Foundational Results.

The General Question.

Basic Results.

Summary.

Further Reading.

Exercises.

4. Security Policies.

Security Policies.

Types of Security Policies.

The Role of Trust.

Types of Access Control.

Example: Academic Computer Security Policy.

Summary.

Further Reading.

Exercises.

5. Confidentiality Policies.

Goals of Confidentiality Policies.

The Bell-LaPadula Model.

Summary.

Further Reading.

Exercises.

6. Integrity Policies.

Goals.

Biba Integrity Model.

Clark-Wilson Integrity Model.

Summary.

Further Reading.

Exercises.

7. Hybrid Policies.

Chinese Wall Model.

Bell-LaPadula and Chinese Wall Models.

Clinical Information Systems Security Policy.

Originator Controlled Access Control.

Role-Based Access Control.

Summary.

Further Reading.

Exercises.

8. Basic Cryptography.

What Is Cryptography?

Classical Cryptosystems.

Public Key Cryptography.

Cryptographic Checksums.

Summary.

Further Reading.

Exercises.

9. Key Management.

Session and Interchange Keys.

Key Exchange.

Cryptographic Key Infrastructures.

Storing and Revoking Keys.

Digital Signatures.

Summary.

Further Reading.

Exercises.

10. Cipher Techniques.

Problems.

Stream and Block Ciphers.

Networks and Cryptography.

Example Protocols.

Summary.

Further Reading.

Exercises.

11. Authentication.

Authentication Basics.

Passwords.

Challenge-Response.

Biometrics.

Location.

Multiple Methods.

Summary.

Further Reading.

Exercises.

12. Design Principles.

Overview.

Design Principles.

Summary.

Further Reading.

Exercises.

13. Representing Identity.

What Is Identity?

Files and Objects.

Users.

Groups and Roles.

Naming and Certificates.

Identity on the Web.

Summary.

Further Reading.

Exercises.

14. Access Control Mechanisms.

Access Control Lists.

Capabilities.

Locks and Keys.

Ring-Based Access Control.

Propagated Access Control Lists.

Summary.

Further Reading.

Exercises.

15. Information Flow.

Basics and Background.

Compiler-Based Mechanisms.

Execution-Based Mechanisms.

Example Information Flow Controls.

Summary.

Further Reading.

Exercises.

16. Confinement Problem.

The Confinement Problem.

Isolation.

Covert Channels.

Summary.

Further Reading.

Exercises.

17. Introduction to Assurance.

Assurance and Trust.

Building Secure and Trusted Systems.

Building Security In or Adding Security Later.

Summary.

Further Reading.

Exercises.

18. Evaluating Systems.

Goals of Formal Evaluation.

TCSEC: 19831999.

FIPS 140: 1994Present.

The Common Criteria: 1998Present.

SSE-CMM: 1997Present.

Summary.

Further Reading.

Exercises.

19. Malicious Logic.

Introduction.

Trojan Horses.

Computer Viruses.

Computer Worms.

Other Forms of Malicious Logic.

Defenses.

Summary.

Further Reading.

Exercises.

20. Vulnerability Analysis.

Introduction.

Penetration Studies.

Vulnerability Classification.

Frameworks.

Summary.

Further Reading.

Exercises.

21. Auditing.

Definitions.

Anatomy of an Auditing System.

Designing an Auditing System.

A Posteriori Design.

Auditing Mechanisms.

Examples: Auditing File Systems.

Audit Browsing.

Summary.

Further Reading.

Exercises.

22. Intrusion Detection.

Principles.

Basic Intrusion Detection.

Models.

Architecture.

Organization of Intrusion Detection Systems.

Intrusion Response.

Summary.

Further reading.

Exercises.

23. Network Security.

Introduction.

Policy Development.

Network Organization.

Availability and Network Flooding.

Anticipating Attacks.

Summary.

Further Reading.

Exercises.

24. System Security.

Introduction.

Policy.

Networks.

Users.

Authentication.

Processes.

Files.

Retrospective.

Summary.

Further Reading.

Exercises.

25. User Security.

Policy.

Access.

Files and Devices.

Processes.

Electronic Communications.

Summary.

Further Reading.

Exercises.

26. Program Security.

Introduction.

Requirements and Policy.

Design.

Refinement and Implementation.

Common Security-Related Programming Problems.

Testing, Maintenance, and Operation.

Distribution.

Conclusion.

Summary.

Further Reading.

Exercises.

27. Lattices.

Basics.

Lattices.

Exercises.

28. The Extended Euclidean Algorithm.

The Euclidean Algorithm.

The Extended Euclidean Algorithm.

Solving ax mod n = 1.

Solving ax mod n = b.

Exercises.

29. Virtual Machines.

Virtual Machine Structure.

Virtual Machine Monitor.

Exercises.

Bibliography.
Index.