Indirection and computer security. | Zendy

Michael J. van den Berg | Zendy

AI Assistant Blog Pricing

Home ZAIA Blog

Open Access

Indirection and computer security.

Author(s) -

Michael J. van den Berg

Publication year - 2011

Publication title -

osti oai (u.s. department of energy office of scientific and technical information)

Language(s) - English

Resource type - Reports

DOI - 10.2172/1034885

Subject(s) - indirection , computer science , computer security , vulnerability (computing) , key (lock) , perspective (graphical) , programming language , artificial intelligence

The discipline of computer science is built on indirection. David Wheeler famously said, 'All problems in computer science can be solved by another layer of indirection. But that usually will create another problem'. We propose that every computer security vulnerability is yet another problem created by the indirections in system designs and that focusing on the indirections involved is a better way to design, evaluate, and compare security solutions. We are not proposing that indirection be avoided when solving problems, but that understanding the relationships between indirections and vulnerabilities is key to securing computer systems. Using this perspective, we analyze common vulnerabilities that plague our computer systems, consider the effectiveness of currently available security solutions, and propose several new security solutions

The content you want is available to Zendy users.

Already have an account? Click here to sign in.

Having issues? You can contact us here

Accelerating Research