An Approach to Analyzing the Windows and Linux Security Models

Song, Xinyue; Stinson, Michael; Lee, R.; Albee, Paul

doi:10.1109/icis-comsar.2006.18

Cited by 4 publications

(1 citation statement)

References 5 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Literature [4] and Literature [5] pointed out that the safety of the operating system involves many factors; the key issue is not the choice of system but the possibility of establishing a complete security system with qualified administrators to maintenance.…”

Section: Security Analysismentioning

confidence: 99%

Operating System Choice of the ISCS Server in Urban Rail Transit

Su¹,

Kuang

2013

AMM

View full text Add to dashboard Cite

Server operating system of the integrated supervisory control system (ISCS) in urban rail transport is very important, this article analyzed and compared the main server OS Unix, Linux and Windows server from security, reliability, ease of use and cost. Finally using the Shenzhen Metro 3rd Line as an example, summed up that current the server operating system of the ISCS system will continue to Unix and Windows Server-based, and gradually transitioned to Windows Server.

show abstract

Section: Security Analysismentioning

confidence: 99%

Operating System Choice of the ISCS Server in Urban Rail Transit

Su¹,

Kuang

2013

AMM

View full text Add to dashboard Cite

show abstract

An Adversarial Approach: Comparing Windows and Linux Security Hardness Using Mitre ATT&CK Framework for Offensive Security

Sikandar

Sikander

Anjum

et al. 2022

2022 IEEE 19th International Conference on Smart Communities: Improving Quality of Life Using ICT, IoT and AI (HONET)

View full text Add to dashboard Cite

A Qualitative Analysis of Privilege Escalation

Song

Stinson

Lee

et al. 2006

2006 IEEE International Conference on Information Reuse &Amp;amp; Integration

View full text Add to dashboard Cite

Many programming bugs can lead to privilege escalation, which is a major security concern. However, there are times when the concern proves to be a false positive.In a previous paper, "An Approach to Analyzing the Windows and Linux Security Models", a set of metrics was proposed to assess risks quantitatively [1]. However, with the risk quantified, there is still not a clearly defined way of distinguishing between the true and false positives on the continuum of security risks. An effective method needs to be developed to solve this problem.In this paper, a new set of qualitative metrics is proposed in order to draw a correct conclusion on the criticality of a privilege escalation case. This set of qualitative metrics works more effectively to answer this question. Two cases are examined to demonstrate how this set of qualitative metrics works. Through a comparison of these two cases, it is demonstrated that the question of true or false positive to privilege escalation can be answered correctly. Therefore, this is an effective solution in solving this different type of problems.

show abstract

An Approach to Analyzing the Windows and Linux Security Models

Cited by 4 publications

References 5 publications

Operating System Choice of the ISCS Server in Urban Rail Transit

Operating System Choice of the ISCS Server in Urban Rail Transit

An Adversarial Approach: Comparing Windows and Linux Security Hardness Using Mitre ATT&CK Framework for Offensive Security

A Qualitative Analysis of Privilege Escalation

Contact Info

Product

Resources

About