[iwar] Historical posting

From: Fred Cohen
From: fc@all.net
To: iwar@onelist.com
Mon, Jan 1, 1999

Messages sorted by: [ date ][ subject ][ author ][ recipient ]
Next message: From: Fred Cohen To: "[iwar] Historical posting"
Previous message: From: Fred Cohen To: "[iwar] Historical posting"

fc  Mon Jan 1, 1999
Received: (from fc@localhost) by all.net (8.9.3/8.7.3) id FAA15269 for iwar@onelist.com; Tue, 18 Apr 2000 05:21:43 -0700
To: iwar@onelist.com
MIME-Version: 1.0
Mailing-List: list iwar@egroups.com; contact iwar-owner@egroups.com
Delivered-To: mailing list iwar@egroups.com
Precedence: bulk
List-Unsubscribe: 
Date: Mon, Jan 1, 1999
From: Fred Cohen 
Reply-To: iwar@egroups.com
Subject: [iwar] Historical posting

          


             In reference to the following view expressed by Chris Calvert:

> 

> From: "Chris Calvert" calvertc@m...

...



Advanced Systems Protection, 1987 - commercial product with most of the

features listed below and more. 



Integrity Toolkit, 1988 - commercial product with all of these and more

- a derived work from ASP.



[Cohen86-2] F.  Cohen, A Complexity Based Integrity Maintenance

Mechanism, Conference on Information Sciences and Systems, Princeton

University, March 1986.  [This paper first described the concept of

software self-defense and proposed an implementation based on

cryptographic checksumming techniques.]



[Cohen87-4] F.  Cohen, A Cryptographic Checksum for Integrity Protection

in Untrusted Computer Systems,IFIP-TC11 Computers and Security,

V6(1987).  [This paper introduced a cryptographic method for protecting

the integrity of information stored on disk by providing reliable

detection of change.]



[Cohen88-2] F.  Cohen, Models of Practical Defenses Against Computer

Viruses, IFIP-TC11, Computers and Security, V7#6, 1988.  [This paper

formally introduces integrity shells and shows that they are optimal as

a defense against computer viruses in untrusted computer systems.]



These are refereed journal articles that these authors should have been

aware of and should have cited (an obviously biased view).



> Swatch - Stephen E Hansen & E. Todd Atkins, Stanford University. "Automated

> System Monitoring and Notification with Swatch," 1993 LISA Conference.

> Currently

> available from and developed at www.stanford.edu.

> 

> Tripwire - Developed by Eugene Spafford and Gene Kim at Purdue University in

> 1992,

> the package was commercialized in 1998 and is now maintained by Tripwire

> Security Inc.

> 

> Tiger - Written at Texas A&M University as part of the TAMU suite of

> security tools -

> the suite was developed in response to a series of coordinated Internet

> intrusions that

> occurred in the summer of 1992. "Texas A&M network security package

> overview, " Dave Safford

> Doug Schales, Dave Hess.

> 

> No flames just facts.



No flames, just earlier published refereed journal articles and

commercial products.



FC

Next message: From: Fred Cohen To: "[iwar] Historical posting"
Previous message: From: Fred Cohen To: "[iwar] Historical posting"