A Map of Security Risks Associated with Using COTS

Ulf Lindqvist; Erland Jonsson

doi:10.1109/2.683009

Computer
1998
Issue No. 6 - June
Abstract - A Map of Security Risks Associated with Using COTS

	This Article
	Subscribers, please Login Purchase article: $19 PDF HTML IEEE Xplore Subscribers RSS feed
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/EndNote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Ulf Lindqvist Articles by Erland Jonsson

A Map of Security Risks Associated with Using COTS

June 1998 (vol. 31 no. 6)

pp. 60-66

	ASCII Text	x
	Ulf Lindqvist, Erland Jonsson, "A Map of Security Risks Associated with Using COTS," Computer, vol. 31, no. 6, pp. 60-66, June, 1998.

	BibTex	x
	@article{ 10.1109/2.683009, author = {Ulf Lindqvist and Erland Jonsson}, title = {A Map of Security Risks Associated with Using COTS}, journal ={Computer}, volume = {31}, number = {6}, issn = {0018-9162}, year = {1998}, pages = {60-66}, doi = {http://doi.ieeecomputersociety.org/10.1109/2.683009}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - MGZN JO - Computer TI - A Map of Security Risks Associated with Using COTS IS - 6 SN - 0018-9162 SP60 EP66 EPD - 60-66 A1 - Ulf Lindqvist, A1 - Erland Jonsson, PY - 1998 VL - 31 JA - Computer ER -

Ulf Lindqvist

Erland Jonsson

DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/2.683009

Combining Internet connectivity and COTS-based systems results in increased threats from both external and internal sources. Traditionally, security design has been a matter of risk avoidance. Now more and more members of the security community realize the impracticality and insufficiency of this doctrine. It turns out that strict development procedures can only reduce the number of flaws in a complex system, not eliminate every single one. Vulnerabilities may also be introduced by changes in the system environment or the way the system operates. Therefore, both developers and system owners must anticipate security problems and have a strategy for dealing with them. This is particularly important with COTS-based systems, because system owners have no control over the development of the components. The authors present a taxonomy of potential problem areas. It can be used to aid the analysis of security risks when using systems that to some extent contain COTS components.

Citation:

Ulf Lindqvist, Erland Jonsson, "A Map of Security Risks Associated with Using COTS," Computer, vol. 31, no. 6, pp. 60-66, June 1998, doi:10.1109/2.683009

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.