Issue No. 04 - July/August (2007 vol. 5)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2007.84
Sean Peisert , University of California, San Diego
Matt Bishop , University of California, Davis
To evaluate anything we can't prove using pure mathematics or logical syllogism, we must test hypotheses by performing controlled experiments to generate measurable, empirical data. But today's computer security researchers often claim "proof" without following this approach. Failure to follow the scientific method rigorously can create problems. This article presents a method for scientific experimentation when others aren't appropriate or can't be readily applied. The goal is to further motivate researchers to apply science to experiments and, in concert with the authors' earlier work, offer a new technique for doing so.
scientific method, experimentation
S. Peisert and M. Bishop, "I Am a Scientist, Not a Philosopher!," in IEEE Security & Privacy, vol. 5, no. , pp. 48-51, 2007.