Saturday, August 2, 2008

Attack trees

A post over on Spark's Fedora blog about Anti-Virus, Anti-Spyware, and Rootkits in Linux prompted me to write a lengthy response. In doing so, I realized that I hadn't posted about basic security theory in a very long time.

Semi-related to Spark's topic is the following: attack trees. A good starting place is Wikipedia's article on attack trees and Bruce Schneier's 1999 paper on the topic is also a very good read.