Shostack + Friends Blog Archive


Top 30 Papers in Infosec

Max Dornseif has a post titled “Top 18 Papers in Information Security,” with 28 papers. But who’s counting?

Its a fascinating exercise, and I’m glad to see papers from Phrack. I’d suggest that they define top: Most influential? Most cited? Most important? I do think that no paper which isn’t available to the public via the internet should be considered for their list.

I’d suggest that they add “Why Johnny Can’t Encrypt” and one of the SSL specs; perhaps V2?

4 comments on "Top 30 Papers in Infosec"

Comments are closed.