Secure Coding mailing list archives
Unclassified NSA document on .NET 2.0 Framework Security
From: neumann at csl.sri.com (Peter G. Neumann)
Date: Tue, 25 Nov 2008 9:31:09 PST
And don't forget the Paul Karger paper from Oakland, which applies access
controls to executables and effectively provides implementations for
Saltzer-Schroeder's least privilege and more:
@InProceedings{Karger87,
Key="Karger", Author="P.A. Karger",
Title="Limiting the Damage Potential of Discretionary {T}rojan Horses",
BookTitle="Proceedings of the 1987 Symposium on Security and Privacy",
Organization="IEEE Computer Society",
Address="Oakland, California", Year="1987", Month="April", pages="32--37"}
Current thread:
- Regional differences in software security, (continued)
- Regional differences in software security Kenneth Van Wyk (Nov 26)
- Regional differences in software security Stephen Craig Evans (Nov 26)
- Unclassified NSA document on .NET 2.0 Framework Security Susan Bradley (Nov 26)
- Unclassified NSA document on .NET 2.0 Framework Security Jerry Leichter (Nov 26)
- Unclassified NSA document on .NET 2.0 Framework Security Stephen Craig Evans (Nov 26)
- Unclassified NSA document on .NET 2.0 Framework Security Andy Steingruebl (Nov 25)
- Unclassified NSA document on .NET 2.0 Framework Security ljknews (Nov 25)
- Unclassified NSA document on .NET 2.0 Framework Security Shea, Brian A (Nov 25)
- Unclassified NSA document on .NET 2.0 Framework Security Susan Bradley, CPA (Nov 25)
- Unclassified NSA document on .NET 2.0 Framework Security Dana Epp (Nov 25)