Title :
Results-oriented security
Author :
Bishop, Martin ; Ford, Richard ; Ramilli, M.
Author_Institution :
Dept. of Comput. Sci., Univ. of California at Davis, Davis, CA, USA
Abstract :
Current security practice is to examine incoming messages, commands, data, and executing processes for attacks that can then be countered. This position paper argues that this practice is counterproductive because the number and variety of attacks are far greater than we can cope with. We propose a results-oriented approach, in which one focuses on the step of the attack that realizes the compromise. Thus, the manner in which the compromise is effected becomes less important than the actual result, and prevention, detection, and recovery efforts are focused on that.
Keywords :
message authentication; data security; execution process; message security; results-oriented security; Computers; Context; Intrusion detection; Malware; Monitoring; Software;
Conference_Titel :
Malicious and Unwanted Software (MALWARE), 2011 6th International Conference on
Conference_Location :
Fajardo
Print_ISBN :
978-1-4673-0031-5
DOI :
10.1109/MALWARE.2011.6112325
