Part I: Introduction Chapter 1: An Overview of Computer Security Part II: Foundations Chapter 2: Access Control Matrix Chapter 3: Foundational Results Part III: Policy Chapter 4: Security Policies Chapter 5: Confidentiality Policies Chapter 6: Integrity Policies Chapter 7: Availability Policies Chapter 8: Hybrid Policies Chapter 9: Noninterference and Policy Composition Part IV: Implementation I: Cryptography Chapter 10: Basic Cryptography Chapter 11: Key Management Chapter 12: Cipher Techniques Chapter 13: Authentication Part V: Implementation II: Systems Chapter 14: Design Principles Chapter 15: Representing Identity Chapter 16: Access Control Mechanisms Chapter 17: Information Flow Chapter 18: Confinement Problem Part VI: Assurance Chapter 19: Introduction to Assurance Chapter 20: Building Systems with Assurance Chapter 21: Formal Methods Chapter 22: Evaluating Systems Part VII: Special Topics Chapter 23: Malware Chapter 24: Vulnerability Analysis Chapter 25: Auditing Chapter 26: Intrusion Detection Chapter 27: Attacks and Responses Part VIII: Practicum Chapter 28: Network Security Chapter 29: System Security Chapter 30: User Security Chapter 31: Program Security Part IX: Appendices Appendix A: Lattices Appendix B: The Extended Euclidean Algorithm Appendix C: Entropy and Uncertainty Appendix D: Virtual Machines Appendix E: Symbolic Logic Appendix F: The Encryption Standards Appendix G: Example Academic Security Policy Appendix H: Programming Rules