Title :
The importance of high assurance computers for command, control, communications, and intelligence systems
Author :
Shockley, W.R. ; Schell, R.R. ; Thompson, M.F.
Author_Institution :
Gemini Comput. Inc., Carmel, CA, USA
Abstract :
The authors discuss the available alternatives for building multilevel secure automated command, control, communications, and intelligence systems (CCCI systems). It is concluded that the only way to have a high degree of confidence that the anticipated threat can be countered is to base a CCCI system on a TCB (trusted computer base) having a security kernel (i.e., on a Class B3 or A1 TCB rather than Class B2 TCB). The recommended approach is to provide the required operating system services as a nonsecurity-critical extension to a commercially available Class B3 TCB, making it possible to use technology that is available, affordable, and immediately usable. It is concluded that the desired extensions are practical within the constraints of a CCI system development project and could be implemented using standard software engineering techniques without impacting the highly-assured security characteristics of the system enforced by the underlying security kernel
Keywords :
command and control systems; security of data; software engineering; CCCI systems; CCI system development project; Class B2 TCB; Class B3 TCB; anticipated threat; high assurance computers; multilevel secure automated command, control, communications, and intelligence systems; nonsecurity-critical extension; operating system services; security kernel; software engineering; trusted computer base; Automatic control; Communication system control; Communication system security; Computer security; Control systems; Intelligent control; Intelligent structures; Intelligent systems; Kernel; Operating systems;
Conference_Titel :
Aerospace Computer Security Applications Conference, 1988., Fourth
Conference_Location :
Orlando, FL
Print_ISBN :
0-8186-0895-1
DOI :
10.1109/ACSAC.1988.113358
