Title :
Information sharing in secure systems
Author :
Gray, James W., III
Author_Institution :
US Naval Res. Lab., Washington, DC, USA
Abstract :
The author attempts to establish a theoretical foundation for secure information sharing. He proposes a secure system structuring construct, called a secure object manager, as an example of a one-way information sharing mechanism. Secrecy, integrity, and availability requirements for the secure object manager are defined. A formal system model, including a careful treatment of communication via bounded buffers, is developed. Then he formally defines secrecy in terms of the model. This definition of secrecy precludes all covert channels, including storage, probabilistic, and timing channels. An implementation of the secure object manager that satisfies all the requirements considered is presented
Keywords :
formal logic; security of data; availability; communication via bounded buffers; covert channels; formal system model; integrity; secrecy; secure information sharing; secure object manager; secure system structuring construct; secure systems; theoretical foundation; Communication channels; Databases; Electronic mail; Information technology; Management information systems; Operating systems; Read-write memory; System recovery; Timing; Writing;
Conference_Titel :
Computer Security Foundations Workshop III, 1990. Proceedings
Conference_Location :
Franconia, NH
Print_ISBN :
0-8186-2071-4
DOI :
10.1109/CSFW.1990.128193
