[EMAIL PROTECTED] (Predrag Ivanovic) writes: > > Does anyone have a reference to the original coinage of this > > analogy? > > > > Thanks, > > > > - - ferg > > Also sometimes referred to as 'M&M security model'. > Interview with Tom Arnold: > http://itmanagement.earthweb.com/secu/article.php/791191 > Whitepaper "An Electronic Citadel: A Method for Securing Credit Card and > Private Consumer Data in e-Business Sites": > http://www.siia.net/software/pubs/aec-01.pdf > This is earliest mention of that phrase i could find.
i first heard it from bellovin in 1992, and first saw it in print in the bellovin/cheswick firewalls book which i think was in 1994. it may have been published in an earlier paper that was swept up into that book. -- Paul Vixie _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
