POLA Today Keeps the Virus at Bay
暂无分享,去创建一个
security, access control, computer virus The software industry is making a major effort to eliminate the flaws exploited by writers of malware. It is the premise of this essay that this strategy cannot succeed. Something else is needed, and that something is enforcing the Principle of Least Authority (POLA) at a finer granularity than we do today.
[1] David A. Wagner,et al. A Security Analysis of the Combex DarpaBrowser Architecture , 2002 .
[2] Ka-Ping Yee,et al. User Interaction Design for Secure Systems , 2002, ICICS.