Lecture 3 Outline

Reading: § 14, [1] (see syllabus)
Due: Homework 1, due on Apr. 11, 2018 at 11:59pm


  1. Greetings and felicitations!
  2. Principles of secure design
    1. Principle of least privilege
    2. Principle of fail-safe defaults
    3. Principle of economy of mechanism
    4. Principle of complete mediation
    5. Principle of open design
    6. Principle of separation of privilege
    7. Principle of least common mechanism
    8. Principle of least astonishment
  3. Principles of robust programming
    1. Maximum stupidity
    2. Paranoia
    3. Dangerous implements
    4. Can’t happen

UC Davis sigil
Matt Bishop
Office: 2209 Watershed Sciences
Phone: +1 (530) 752-8060
Email: mabishop@ucdavis.edu
ECS 153, Computer Security
Version of April 6, 2018 at 10:52AM

You can also obtain a PDF version of this.

Valid HTML 4.01 Transitional Built with BBEdit Built on a Macintosh