Using mandatory integrity to enforce `commercial´ security

Author

Lee, Theodore M P

Author_Institution

Trusted Inf. Syst. Inc., Minnetonka, MN, USA

fYear

1988

fDate

18-21 Apr 1988

Firstpage

140

Lastpage

146

Abstract

Government research, development, and standardization efforts in computer security have been repeatedly criticized as not being applicable to the commercial world. In particular, they have been criticized as not being able to support the kinds of security policies, such as separation of duties and well-formed transactions, used by the financial and other communities to control unauthorized changes to or falsification of information. It is shown two natural extensions-integrity categories and partially trusted subjects-of the principles of current US Department of Defense computer security standards could be used to implement such commercial security policies in a way that exploits the fundamental strengths of existing or future trusted systems

Keywords

operating systems (computers); security of data; standards; US Department of Defense; commercial security policies; computer security; falsification; integrity categories; mandatory integrity; partially trusted subjects; security policies; security standards; standardization; trusted systems; unauthorized changes; Access control; Books; Computer security; Context modeling; Control systems; Government; Information security; Kernel; National security; Neutron spin echo;

fLanguage

English

Publisher

ieee

Conference_Titel

Security and Privacy, 1988. Proceedings., 1988 IEEE Symposium on

Conference_Location

Oakland, CA

Print_ISBN

0-8186-0850-1

Type

conf

DOI

10.1109/SECPRI.1988.8106

Filename

8106