publications on Computer Security

In the US Department of Defense, a 'trusted system or component' is defined as 'one which can break the security policy'. ...
You don't trust me to keep your medical records, because I don't have them; regardless of whether I like you or hate you, I can't do anything to affect your policy that your medical records should be confidential. Your doctor can, though; and the fact that he is in a position to harm you is really what is meant (at a system level) when you say that you trust him.

-- Ross Anderson
TCPA / Palladium Frequently Asked Questions

2008

refereed workshop and conference papers

2005

refereed workshop and conference papers

technical reports

2004

journal papers

technical reports

2003

refereed workshop and conference papers

1986

journal papers

1987

refereed workshop and conference papers