Lecture 6 Outline

Reading: text, §14, 29
Assignments: Homework 1, due Oct. 5; Lab 1, due Oct. 3


  1. Greetings and felicitations!
  2. Puzzle of the Day
  3. Principles of secure design
    1. Principle of least privilege
    2. Principle of fail-safe defaults
    3. Principle of economy of mechanism
    4. Principle of complete mediation
    5. Principle of open design
    6. Principle of separation of privilege
    7. Principle of least common mechanism
    8. Principle of least astonishment
  4. Program security: example
    1. Requirements and policy
    2. Design
    3. Refinement and implementation
    4. Testing, maintenance, and operation
    5. Distribution


You can also obtain a PDF version of this. Version of October 3, 2016 at 12:26AM