next up previous contents
Next: 2.9 Names and Naming Up: 2.8 Computer Security: Why Previous: 2.8.10.3 Thompson's self-replicating program

2.8.11 Lessons

  1. Hard to resecure system after penetration

    How do you remove backdoor? Remove triggers?

    But what if another trigger in editor? If observer trigger being removed, re-insert trigger on saving file.

  2. Hard to detect when system has been penetrated. Easy to make system forget
  3. Any system has loopholes, and every system has bugs.
  4. The more complex the system, the more bugs - KISS

next up previous contents
Next: 2.9 Names and Naming Up: 2.8 Computer Security: Why Previous: 2.8.10.3 Thompson's self-replicating program
Ian Wakeman 2005-02-22