• DocumentCode
    2563035
  • Title

    The Integrity Lock Architecture and Its Application to Message Systems: Reducing Covert Channels

  • Author

    Meadows, Catherine

  • fYear
    1987
  • fDate
    27-29 April 1987
  • Firstpage
    212
  • Lastpage
    212
  • Abstract
    The integrity lock architecture provides a means of constructing a secure database management system with a relatively small amount of trusted code, using a trusted filter which verifies the integrity of security labels on data from an untrusted DBMS by computing cryptographic checksums. However, since the trusted filter can only check whether or not an individual item of data has been tampered with, and not whether or not that item is a correct answer to a particular database query, a covert channel exists through which a Trojan Horse in the DBMS can leak classified information by encoding it in various incorrect (but unclassified) answers to seemingly innocuous queries. in this paper we discuss a possible solution to this covert channel problem for message systems.
  • Keywords
    Containers; Cryptography; Databases; Information filters; Message systems;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Security and Privacy, 1987 IEEE Symposium on
  • Conference_Location
    Oakland, CA, USA
  • ISSN
    1540-7993
  • Print_ISBN
    0-8186-0771-8
  • Type

    conf

  • DOI
    10.1109/SP.1987.10008
  • Filename
    6234893