Abstract: While today much security research is about defending against the attack du jour, there has been theoretical work in computer security and there are the beginnings of a science base for security. This talk will discuss the kinds of questions one might expect a scince base to address. It will also give examples of how such questions could be answered. Basic concepts in security, such as attack, policy, and enforcement turn out to be surprisingly subtle to define.
Fred B. Schneider.
Blueprint for a Science of Cybersecurity. The Next Wave. Vol 19, No. 2 (2012), 47---57.