Title :
Covert channels-here to stay?
Author :
Moskowitz, Ira S. ; Kang, Myong H.
Author_Institution :
Inf. Technol. Div., Naval Res. Lab., Washington, DC, USA
fDate :
27 Jun-1 Jul 1994
Abstract :
We discuss the difficulties of satisfying high-assurance system requirements without sacrificing system capabilities. To alleviate this problem, we show how trade-offs can be made to reduce the threat of covert channels. We also clarify certain concepts in the theory of covert channels. Traditionally, a covert channel´s vulnerability was measured by the capacity. We show why a capacity analysis alone is not sufficient to evaluate the vulnerability and introduce a new metric referred to as the “small message criterion”
Keywords :
information theory; safety; software reliability; systems analysis; capacity analysis; covert channels; high-assurance system requirements; system capabilities; Data security; Databases; Degradation; Information security; Information technology; Information theory; Laboratories; Multilevel systems; Satellite broadcasting; US Government;
Conference_Titel :
Computer Assurance, 1994. COMPASS '94 Safety, Reliability, Fault Tolerance, Concurrency and Real Time, Security. Proceedings of the Ninth Annual Conference on
Conference_Location :
Gaithersburg, MD
Print_ISBN :
0-7803-1855-2
DOI :
10.1109/CMPASS.1994.318449
