Project Information Module Descriptions Publications Security URLs Team members Project Abstract

Related Links

General Buffer Overflow CryptographySecurity DimensionsBioterrorism Defense

 

General Security

CERT: www.cert.org

The CERT® Coordination Center (CERT/CC), operated by Carnegie Mellon University. CERT's mission includes Internet security vulnerabilities, computer security incidents, security alerts, researching long-term changes in networked systems, and developing information and training to help you improve security at your site.

CIAC: www.ciac.org/ciac

Computer Incident Advisory Capability at the US Department of Energy. This site posts security advisories, virus and hoax information, and security tools.

FIRST: www.first.org

The Forum of Incident Response and Security Teams (FIRST) is a coalition of more than 100 computer security incident response teams from government, commercial, and academic organizations.

NIST: csrc.nist.gov

The Computer Security Research Center (CSRC) at the National Institute of Standards and Technology.

TWURL Security Links: www.twurled-world.com/SecTraining/cover.htm

An aggregated web of URLs linking to US government efforts to improve its computer security expertise.

 

Buffer Overflow

Tutorials

G. McGraw and J. Viega, Make your software behave: Learning the basics of buffer overflows, IBM Developer Works Series:
http://www-106.ibm.com/developerworks/library/overflows/

See also Preventing Buffer Overflows at
http://www-106.ibm.com/developerworks/library/buffer-defend.html

Defenses

N. Frykholm, Countermeasures against Buffer Overflow Attacks, RSA Tech Note, http://www.rsasecurity.com/rsalabs/technotes/buffer/buffer_overflow.html.[

ITS4 Software Security Tool, Cigital Corp.,
 http://www.cigital.com/its4/

Morrisett et al, Cyclone, A Safe Dialect of C, Cornell and ATT Research, http://www.research.att.com/projects/cyclone/

Hoffmeyer, Forrest, Somayaji, Intrusion Detection Using Sequences of System Calls, http://www.cs.unm.edu/~steveah/jcs-accepted.pdf

 

Cryptography

Cryptography Info Series from IBM

Introduction to Cryptography
Symmetric cryptography
Asymmetric cryptography
Cryptography on the Internet
Practical applications
Miscellaneous issues
Contents and resource list

 

Introduction to Information Security

Telecom Glossary 2000: A comprehensive set of references for further information.
http://www.atis.org/tg2k/

SANS Institute: Information Security reading room.
http://rr.sans.org/index.php

Infosec News: On-line information security news service
http://www.infosecnews.com/

SC Magazine: The largest circulation information security magazine.
http://www.scmagazine.com/



Introduction to Bioterrorism Defense

Center for Disease Control: Emergeny Preparedness and Response of Agents, Diseases, and Other Threats
http://www.bt.cdc.gov/index.asp

NewScientist.com: Bioterrorism and Bioweapons Special Report
http://www.newscientist.com/hottopics/bioterrorism/

 

Project InfoModulesLinksPapersTeamNSF

Last update: July 22, 2004