.pf{position:relative;background-color:#fff;overflow:hidden;margin:0;border:0}.pc{position:absolute;border:0;padding:0;margin:0;top:0;left:0;width:100%;height:100%;overflow:hidden;display:block;transform-origin:0 0;-ms-transform-origin:0 0;-webkit-transform-origin:0 0}.bi{position:absolute;border:0;margin:0}.c{position:absolute;border:0;padding:0;margin:0;overflow:hidden;display:block}.t{position:absolute;white-space:pre;font-size:1px;transform-origin:0 100%;-ms-transform-origin:0 100%;-webkit-transform-origin:0 100%;unicode-bidi:bidi-override;-moz-font-feature-settings:"liga" 0}.t:after{content:''}.t:before{content:'';display:inline-block}.t span{position:relative;unicode-bidi:bidi-override}._{display:inline-block;color:transparent;z-index:-1}.pi{display:none}@media screen{.pf{margin:13px auto;box-shadow:1px 1px 3px 1px #333;border-collapse:separate}}.ff1{font-family:ff1;line-height:1.432;font-style:normal;font-weight:400;visibility:visible}.ff2{font-family:ff2;line-height:1.432;font-style:normal;font-weight:400;visibility:visible}.ff3{font-family:ff3;line-height:.941406;font-style:normal;font-weight:400;visibility:visible}.ff4{font-family:ff4;line-height:.966797;font-style:normal;font-weight:400;visibility:visible}.m0{transform:matrix(.320260,0,0,.320260,0,0);-ms-transform:matrix(.320260,0,0,.320260,0,0);-webkit-transform:matrix(.320260,0,0,.320260,0,0)}.ls2{letter-spacing:-.072800px}.ls1{letter-spacing:0}.ls0{letter-spacing:.203520px}.sc0{text-shadow:-.015em 0 transparent,0 .015em transparent,.015em 0 transparent,0 -.015em transparent}@media screen and (-webkit-min-device-pixel-ratio:0){.sc0{-webkit-text-stroke:.015em transparent;text-shadow:none}}.ws0{word-spacing:-12.27648px}.ws1{word-spacing:-12.203680px}.ws2{word-spacing:0}._0{margin-left:-1.020160px}._1{width:45.002240px}._2{width:131.707520px}.fc0{color:#000}.fs0{font-size:44.16px}.y1{bottom:0}.y2c{bottom:126.392685px}.y2b{bottom:144.988284px}.y2a{bottom:163.589008px}.y29{bottom:182.189731px}.y28{bottom:200.94418px}.y27{bottom:219.544903px}.y26{bottom:238.145627px}.y25{bottom:256.746351px}.y0{bottom:272.861853px}.y24{bottom:275.53923px}.y23{bottom:294.139954px}.y22{bottom:312.740677px}.y21{bottom:331.341401px}.y20{bottom:349.942124px}.y1f{bottom:368.696573px}.y1e{bottom:387.297296px}.y1d{bottom:405.898020px}.y1c{bottom:424.498743px}.y1b{bottom:443.253192px}.y1a{bottom:461.853916px}.y19{bottom:480.480260px}.y18{bottom:499.080983px}.y17{bottom:517.681707px}.y16{bottom:536.436155px}.y15{bottom:555.036879px}.y14{bottom:573.637602px}.y13{bottom:592.238326px}.y12{bottom:610.839050px}.y11{bottom:629.593498px}.y10{bottom:648.194222px}.yf{bottom:666.794945px}.ye{bottom:685.395669px}.yd{bottom:704.188548px}.yc{bottom:722.789272px}.yb{bottom:741.389995px}.ya{bottom:759.990719px}.y9{bottom:778.591443px}.y8{bottom:797.345891px}.y7{bottom:815.946615px}.y6{bottom:834.547338px}.y5{bottom:853.148062px}.y4{bottom:871.902510px}.y3{bottom:890.503234px}.y2{bottom:909.129578px}.h2{height:50.69568px}.h1{height:522.664959px}.h0{height:1014.58492px}.w1{width:443.240382px}.w2{width:783.997426px}.w0{width:783.997438px}.x1{left:.000012px}.x0{left:92.234993px}.x2{left:115.324474px}

CSE 127 Lecture Notes - Lecture 2: Attack Surface, Alarm Clock, Threat Model

Prevent of unauthorized modification of info, process, or function. Ex: increasing your bank acc balance w/o depositing money. Availability - prevent of unauthorized denial of service to others. Privacy: a person"s right or expectation to control the disclosure of his/her personal info. Vulnerabilities - weaknesses that could be exploited to cause damage to assets. In particular, look to assumptions in system. Set of systems/components/people/entities that your security depends on (and you have. Sb: perimeter around components of the same trust level. As: set of interaction points that an attacker can interact (things they could try to attack) Minimize as (fewest ways to attack) via air-gapping . Your threat model is your problem scope. Attackers don"t care about your threat model! You can"t make a msystem secure it you don"t even know what it does: assets &amp; attackers. An attacker must not be able to compromise the [property] of ___ : system design.

United States

Introduction to Computer Security

Computer Science and Engineering

Savage, Stefan

University of California - San Diego

Organismic and Evolutionary Biology

Computer Networks

Database Systems Applications

Introduction to Modern Cryptography

Programming Languages: Principles and Paradigms

Introduction to Artificial Intelligence: Search and Reasoning

Online Database Analytics Applications

Database System Principles

Principles of Computer Operating Systems

Introduction to Computer Architecture

Topics in Computer Science and Engineering

Computer Graphics

Rome, Christianity, and the Middle Ages

Renaissance, Reformation, and Early Modern Europe

Language, Culture, and Education

Networked Services

Software Engineering

Web Client Languages

ITM 706 Lecture Notes - Lecture 10: Protection Mechanism, Security Bug, Stuxnet

All Subjects

Accounting

Mathematics

Statistics

Computer Science

Calculus

Psychology

Management

Biology

Physics

Chemistry

Electrical Engineering

Mechanical Engineering

Marketing

Music

History

Project Management

Business

Architecture

Geography

Science

Nursing

Information Technology

Engineering

English

Finance

Philosophy

Astronomy

Communications

Sociology

Anthropology

Prealgebra

Algebra

Precalculus

Ethics

Geometry

Probability

Economics

CSE 127 Lecture Notes - Lecture 2: Attack Surface, Alarm Clock, Threat Model

Document Summary

Get access

Related Documents

ITM 706 Lecture Notes - Lecture 10: Protection Mechanism, Security Bug, Stuxnet