Security and Software Engineering

Table of contents

Security and Software Engineering

PowerPoint Presentation

Some Principles of Software Engineering

Security is Hard

Case Study: rcp and rdist

Solutions

Slide 7

Case Study: Kerberized telnet

Analysis

Case Study: Many C Programs

Hoare’s Turing Award Lecture:

How to Fix Buffer Overflows

Case Study: ftpd

Main Loop of ftpd

Login Sequence

Solution

Cryptography is Even Harder

Sample Protocol Failure

Other Rules for Cryptography

Bug Fixes

Today’s Challenges

Firewalls and Databases

The Wrong Choice

Firewalls

Where to From Here?

Author: Steven Bellovin

E-mail: smb@research.att.com

Homepage: http://www.research.att.com/~smb

Best viewed with

Download presentation