Issue No. 06 - November/December (2011 vol. 9)
DOI Bookmark: http://doi.ieeecomputersociety.org/10.1109/MSP.2011.172
Steven M. Bellovin , Columbia University
The author discusses the problem of how a security specialist should think. In particular, such a person should know how to evaluate complex systems and look for vulnerabilities created by interactions. It's hard to do, and even harder to teach.
security education; secure system design
S. M. Bellovin, "Security Think," in IEEE Security & Privacy, vol. 9, no. , pp. 88, 2011.