Towards an analytic model of security flaws
نویسندگان
چکیده
A simple model of the dynamics of flaws within a software security system is presented. We demonstrate how this model can be fully captured by a Galton-Watson branching process and thus can be effectively calculated upon. Using the limit behaviour of a Galton-Watson branching process, we can demonstrate how a multi-layered security system can become secure even with ’poor’ flaw correction. Finally we make some observations about how the parameters of our models can be estimated and how further results from branching processes could be exploited within security systems.
منابع مشابه
Crime Prevention in Urban Design: towards Space Syntax Approach as a Quantitative Analytic Modeling of Qualitative Issue of Security (Based on Spatial Configuration)
متن کامل
A Control Method Based on Dynamic Response of the Airplane for Compensation of Pilot-Induced Oscillations: Benefits and Flaws
Pilot-Induced Oscillation (PIO) is an unwanted, inadvertent phenomenon that has the ability to damage the aircraft completely. This paper suggests a novel control method that can damp PIO after predicting its occurrence. The specific point of this control algorithm is that it contains a preprocessor that will not let the controller be activated unless in the case of probable PIOs, so pilot comm...
متن کاملAn Analytic Model for Organization Readiness of Engineering Project Management Based on Virtual Teams
The Organization Readiness of Engineering Project Management Based on Virtual Teams has been analyzed in an Iranian Engineering firm. Adapting and analyzing the latest readiness model, experts’ opinions were received by questionnaires and main criteria of the readiness have been identified. The considered readiness criteria are: Infrastructure, Deliverables (Drawings, Reports, Minutes of Meeti...
متن کاملVulnerability Testing of Software System Using Fault Injection
We describe an approach for testing a software system for possible security flaws. Traditionally, security testing is done using penetration analysis and formal methods. Based on the observation that most security flaws are triggered due to a flawed interaction with the environment, we view the security testing problem as the problem of testing for the fault-tolerance properties of a software s...
متن کاملA Software Composition Flaw in Google Desktop Search
Modern software systems are composed of different modules and objects that interact with each other. Each of these components may satisfy a local security policy. It may also satisfy a global security policy with respect to its intended operating environment. However, when many components are put together, because of unexpected interactions among them, a local security policy and/or the global ...
متن کامل