My Account Log in

1 option

Automated tools for testing computer system vulnerability / W. Timothy Polk.

National Institute of Standards and Technology (NIST) Publications Available online

View online
Format:
Book
Government document
Author/Creator:
Polk, Tim, 1962- author.
Contributor:
Polk, Tim, 1962-
National Institute of Standards and Technology (U.S.). Computer Security Division.
Series:
NIST special publication ; 800-6.
NIST special publication ; 800-6
Language:
English
Genre:
Technical reports.
Physical Description:
1 online resource.
Place of Publication:
Gaithersburg, MD : U.S. Dept. of Commerce, National Institute of Standards and Technology, 1992.
System Details:
text file
Summary:
Computer security "incidents" occur with alarming frequency. The incidents range from direct attacks by both hackers and insiders to automated attacks such as network worms. Weak system controls are frequently cited as the cause, but many of these incidents are the result of improper use of existing control mechanisms. For example, improper access control specifications for key system files could open the entire system to unauthorized access. Moreover, many computer systems are delivered with default settings that, if left unchanged, leave the system exposed. This document discusses automated tools for testing computer system vulnerability. By analyzing factors affecting the security of a computer system, a system manager can identify common vulnerabilities stemming from administrative errors. Using automated tools, this process may examine the content and protections of hundreds of files on a multi-user system and identify subtle vulnerabilities. By acting on this information, system administrators can significantly reduce their systems' security exposure. This document examines basic requirements for vulnerability testing tools and describes the different functional classes of tools. Finally, the document offers general recommendations about the selection and distribution of such tools.
Notes:
1992.
Contributed record: Metadata reviewed, not verified. Some fields updated by batch processes.
Title from PDF title page.
Withdrawn.
Includes bibliographical references.
OCLC:
927737217
Publisher Number:
GOVPUB-C13-b74b963d8667eb22c477f88bea32cc2f
Access Restriction:
Open Access Unrestricted online access

The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.

Find

Home Release notes

My Account

Shelf Request an item Bookmarks Fines and fees Settings

Guides

Using the Find catalog Using Articles+ Using your account