Security Documents

These documents are from the Net and cover a wide area of topics concerning computer security. They are for the education and legitimate use of computer security techniques only. All non-FAQ documents are in PostScript format unless otherwise noted.

Frequently Asked Questions

Firewalls

Introductory Papers

Internet Firewalls - An Introduction
(August 1994, 221K)
Keeping Your Site Comfortably Secure: An Introduction to Internet Firewalls
(Undated, 1.8M)

General Firewall Documents

A Network Firewall
(June 1992, 374K)
A Toolkit and Methods for Internet Firewalls
(Undated, 185K)
Proper Care and Feeding of Firewalls
(November 1994, 121K)
A Network Perimeter with Secure External Access
(Undated, 268K)
An Internet Gatekeeper
(Undated, 149K)
Thinking About Firewalls
(Undated, 109K)
X Through Firewalls, and Other Application Relays
(May 1993, 430K)

WWW Security

Security and the World Wide Web
(June 1994, 10K HTML)
NCSA on Mosaic Security Issues
(December 1994, 1.6K HTML)
Shen: A Security Scheme for the Web
(Undated, 1.7K HTML)
Using PGP/PEM Encryption
(Undated, 7.6K HTML)
Secure HTTP
(Undated, 2.2K HTML)

Intrusion Detection

A Software Architecture to support Misuse Intrusion Detection
(March 1995, 250K)
An Application of Pattern Matching in Intrusion Detection
(June 1994, 674K)
Algorithm for Distrubuted Recognition and Accountability
(Undated, 209K)
A Pattern Matching Model for Misuse Intrusion Detection
(Undated, 191K)
AI Approach to Intrusion Detection
(June 1994, 168K)
Intrusion Detection In Computers
(January 1991, 12K text)
USTAT - A Real-time Intrusion Detection System for UNIX
(November 1992, 1.3M)

Improving your UNIX Security

Technical Tips

Setting up Sun Security
(March 1992, 7K text)
Miscellaneous Security Tips
(October 1992, 23K text)
CERT Generic Security Tips
(July 1992, 17K text)
UNIX Site Security Handbook
(July 1991, 253K text)

Finding and Fixing Your Security Problems

Improving the Security Of Your Site By Breaking Into It
(Undated, 51K text)
Finding Holes in Your System
(October 1993, 16K text)
Improving the Security of Your UNIX System
(April 1990, 274K)
Becoming An Uebercracker to Stop Uebercrackers
(December 1993, 9K text)

The Internet Worm

A Report on the Internet Worm
(November 1988, 16K text)
Technical Report on the Internet Worm Incident
(September 1991, 173K)
The Internet Worm Program: An Analysis
(December 1988, 283K)
A Tour of the Worm
(Undated, 166K)

Tales of Computer Attacks and Countermeasures

Five Incidents At Columbia University
(Undated, 93K)
"An Evening With Berferd"
(Undated, 82K)
Internet Attack on Texas A&M<
(1993, 294K)
"There Be Dragons"
(August 1992, 185K)
Computer Break-ins: A Case Study
(Undated, 94K)
System Admin Horror Stories
(1992, 148K text)

Networking

TCP/IP Security

TCP Wrapper Security
(Undated, 59K)
A Weakness in the 4.2BSD TCP/IP Software
(February 1985, 27K)
Security Problems in the TCP/IP Protocol Suite
(April 1989, 107K)
Network (In)Security Through IP Packet Filtering
(September 1992, 123K)

General Networking Documents

Architecture and Implementation of Network-Layer Security under UNIX
(Undated, 124K)
Information Security And Privacy In Networks
(Undated, 809K .tar file)
Paving the Road to Network Security
(May 1994, 162K)
NFS Tracing By Passive Network Monitoring
(Undated, 170K)
Addressing Weaknesses in the DNS Protocol
(August 1993, 406K)
Countering Abuse of Name-Based Authentication
(Undated, 243K)
An Architectural Overview of UNIX Network Security
(May 1993, 50K text)
NIS Security Warning
(December 1991, 7.5K)

Trusted Systems

The Orange Book
(August 1983, 264K text)
Understanding Configuration Management in Trusted Systems
(March 1988, 138K text)
Understanding DAC in Trusted Systems
(September 1987, 87K text)
Understanding Facility Management in Trusted Systems
(June 1989, 106K text)
Understanding Trusted Distribution in Trusted Systems
(December 1988, 55K text)
Understanding Audit in Trusted Systems
(July 1987, 56K text)

Newsletters

Miscellaneous Documents

Security Term Glossary
(Undated, 70K text)
Open Systems Security - An Architectural Framework
(June 1991, 300K text)
Password Security: A Case History
(Undated, 36K)
Extracts from various security articles
(Undated, 61K text)
Coping with the Threat of Computer Security Incidents
(June 1990, 102K text)
Threat Assessment of Malicious Code and Human Threats
(October 1992, 231K)
Tty Security - a Tty Session Manager
(Undated, 98K)
Electromagnetic Emanation Eavesdropping
(1989, 45K text)
GAO Report on Internet Security
(June 1989, 104K text)
ACM SIG on Security, Audit, and Control

Send questions and comments to Webmaster@mls.saic.com.