Conferences

• IFIP International Symposium on Human Aspects of Information Security & Assurance (HAISA 2021); papers due April 26, 2021
• New Security Paradigms Workshop (NSPW 2021); papers due May 21, 2021

---

My Links

• My Home Page
• Books
• Classes
• Papers
• Reports and Notes
• Research
• Security in Programming
• Service
• Students
• Talks
• Miscellaneous
• My Family
• About Me (CV and such)

---

Other Links

• Cybersecurity Club
• Computer Security Lab
• Dept. of Computer Science
• College of Engineering
• University of California, Davis
• City of Davis
• County of Yolo
• State of California
• United States of America

---

Me

• This Quarter’s Classes
• Office Hours for This Quarter
• Contacting Me
• My Personal Blog
  (Last Entry September 4, 2020; “Don’t Vote Twice”)

---

Current Time in Davis, CA, USA

A Model for Vulnerability Analysis and Classification

Citation

• S. Engle and M. Bishop, “A Model for Vulnerability Analysis and Classification”, Technical Report CSE-2008-5, Dept. of Computer Science, University of California at Davis, Davis, CA 95616-8562 (2008).

Paper

• PDF
  
• PS
  

Abstract

In this paper, we present a model for vulnerability analysis that enables us to mitigate the complexity of modern systems through well-defined layers of abstraction. We use this model to build a new framework for vulnerability clas- sification. Finally, we present our results classifying buffer overflow vulnerabilities.

---

Last updated on Thursday, April 15, 2021 11:21:01 PM PDT