jaydeltathree

Bace Ch 6: Vulnerability Analysis: A Special Case

Bace talks about Vulnerability analysis because it relates to intrusion detection as being a static analysis scheme. Basically vulnerability analysis is taking a snapshot of the system looking for security problems, checking against some predetermined configuration and reporting to the user. COPS is discussed up front. Bace makes a distinction between credentialed and noncredentialed approaches, acknowledging that others prefer to call them passive and active. Basically the difference is that credentialed approaches work inside the system, and noncredentialed appraoches work outside the system. The latter basically is attacking the system itself--testing by exploit.

SATAN is discussed near the end. Just what I read about SATAN reminds me of Nessus. Password cracking is also discussed.