Using STAMP to understand recent increases in malicious software activity

Zipkin, David S

Author(s)

Zipkin, David S

DownloadFull printable version (5.906Mb)

Alternative title

Using Systems Theoretic Accident Modeling and Processes to understand recent increases in malicious software activity

Other Contributors

Massachusetts Institute of Technology. Technology and Policy Program.

Advisor

Nancy G. Leveson.

Terms of use

M.I.T. theses are protected by copyright. They may be viewed from this source for any purpose, but reproduction or distribution in any format is prohibited without written permission. See provided URL for inquiries about permission. http://dspace.mit.edu/handle/1721.1/7582

Metadata

Show full item record

Abstract

My advisor, Professor Leveson has developed an accident modeling framework called STAMP (Systems Theoretic Accident Modeling and Processes.) Traditional accident models typically focus on component failure; in contrast, STAMP includes interactions between components as well as social, economic, and legal factors. My research extends Leveson's STAMP accident model and applies it to a security problem. I have chosen to investigate the threat posed by malicious computer software such as computer viruses. The problem is especially interesting because surrounding the technical aspects of malicious software is a rich socio-technical system. The first part of the thesis investigates two recent computer worm outbreaks and identifies the numerous ways in which the security system failed. For both outbreaks, there were multiple points of failure including the existence of un-patched workstations, software organizations that distributed insecure software, the lack of sufficient legal disincentives to dissuade hackers, as well as many others. The thesis goes on to examine why the system was operating in such an insecure manner. As is generally the case when modeling an accident, the explanation goes beyond any single factor. I argue that that lack of Internet security can be largely attributed to the fact that those providing critical parts of Internet security do not have sufficient incentives to make good security decisions; instead they often make decisions at odds with Internet security. The thesis concludes with a discussion of policy and technical recommendations for addressing computer security.

Description

Thesis (S.M.)--Massachusetts Institute of Technology, Engineering Systems Division, Technology and Policy Program, 2005.

Includes bibliographical references.

Date issued

2005

URI

http://hdl.handle.net/1721.1/32285

Department

Massachusetts Institute of Technology. Engineering Systems Division; Technology and Policy Program

Publisher

Massachusetts Institute of Technology

Keywords

Technology and Policy Program.

Collections

Graduate Theses