Title :
Providing a flexible security override for trusted systems
Author_Institution :
Trusted Information Systems, Inc., Glenwood, MD, USA
Abstract :
A definition of security, relaxation security, which is expressed in terms of the guarantees that a trusted system may provide, is presented. Relaxation secure systems permit dynamic, incremental relaxation of security constraints by authorized users. The use of guarantees permits security damage sustained during a period of constraint relaxation to be expressed in terms of guarantees violated; the set of violated guarantees may then be used as input for security recovery. A definition of security using a state machine formulation is presented, the implications of relaxation security for security recovery are discussed, and the utility of the approach is demonstrated using an example application
Keywords :
finite automata; security of data; authorized users; flexible security override; incremental relaxation; relaxation security; security constraints; security recovery; state machine formulation; trusted systems; Automata; Contracts; Control systems; Information security; Information systems; Lattices; Protection;
Conference_Titel :
Computer Security Foundations Workshop III, 1990. Proceedings
Conference_Location :
Franconia, NH
Print_ISBN :
0-8186-2071-4
DOI :
10.1109/CSFW.1990.128192
