April 29, 2026 Outline

Reading: text, §19, 20–20.1.2
Assignments: Homework #3 due May 11; Project progress report, due May 11

  1. Assurance
    1. Trustworthy entities
    2. Security assurance
    3. Trusted system
    4. Why assurance is needed
    5. Requirements
    6. Types of assurance
    7. Assurance and software life cycle
    8. Assurance and software development methodologies

  2. Threats and Vulnerabilities

  3. Architectural Considerations
    1. Layering
    2. Build in or add on?
    3. Reference monitors, security kernels, TCBs
UC Davis sigil
Matt Bishop
Office: 2209 Watershed Sciences
Phone: +1 (530) 752-8060
Email: mabishop@ucdavis.edu
ECS 235B, Foundations of Computer and Information Security
Version of April 30, 2026 at 5:52PM

 You can also obtain a PDF version of this.

Valid HTML 4.01 Transitional Built with BBEdit Built on a Macintosh