Windows NT Security-Related Vulnerabilities
Page Content
 |
E. Eugene Schultz - Global Integrity
Mar 05, 1999
Abstract
Any product, no matter how well designed and implemented, has security-related vulnerabilities; Windows NT is no exception. The fact that so many of these vulnerabilities have emerged in the relatively short time since Windows NT's original release is noteworthy. This presentation describes a taxonomy of Windows NT vulnerabilities, providing specific examples within each category.About the Speaker
Dr. Eugene Schultz, CISSP, is the Research Director and Trusted Security Advisor with Global Integrity Corporation, a wholly-owned subsidiary of Science Applications International Corporation (SAIC). In this role he conducts research and consulting activities and provides strategic guidance to corporate clients. He is also a Visiting Scientist in the Computer Science Department at Purdue University as part of his research activities.An expert in Windows NT, UNIX, and network security, Dr. Schultz is a member of the faculty of the Computer Security Institute and SANS (System Administration and Network Security). He has co-authored two books (UNIX: Its Use, Control and Audit and Internet Security for Business) and over 80 published articles, and is a contributing editor to Network Security in addition to being a member of IFIP Working Group 11.4 (Network Security). His new book, Practical Windows NT Security, will be released early this year.
He has received numerous professional awards, including the NASA Technical Innovation Award, Best Paper Award for the National Information Systems Security Conference, and Information Systems Security Association (ISSA) Career Achievement Award. Dr. Schultz has also provided expert testimony for the U.S. Senate.
Before coming to Global Integrity, he was the Principal and Infomation Security Practice Leader for SRI Consulting, where he also served as Program Manager and Research Director for the I-4 (International Information Integrity Institute) Program. Dr. Schultz was also previously a Principal Security Engineer with ARCA Systems, the Project Manager and founder of the Department of Energy's Computer Incident Advisory Capability (CIAC) at Lawrence Livermore National Laboratory, and Group Leader at the Jet Propulsion Laboratory. He has presented over 100 talks, including numerous keynote addresses, at a variety of conferences throughout the world.
© 1999-2013 Purdue University. All rights reserved.
Use/Reuse Guidelines
CERIAS Seminar materials are intended for educational, non-commercial use only and any or all commercial use is prohibited. Any use must attribute "The CERIAS Seminar at Purdue University." Opinions expressed in the recordings are not necessarily representative of the views of CERIAS or of Purdue University.
Footer
RSS Feeds
Combined XML Feed
News XML Feed Events XML Feed Weblogs XML Feed Security Seminar Podcast
Twitter: @cerias, @ceriasarchive, #cerias
CERIAS, Purdue University / Recitation Building / 656 Oval Drive / West Lafayette IN 47907-2086
phone (765)494-7841 / fax (765)496-3181
Copyright © 2013, Purdue University, all rights reserved. Purdue University is an equal access/equal opportunity university.
If you have trouble accessing this page because of a disability, please contact the CERIAS webmaster at webmaster@cerias.purdue.edu. Some content on this site may require the use of a special plug-in or application. Please visit our plug-ins page for links to download these applications.
Privacy Policy
