DocumentCode
564666
Title
On Security Flow Analysis in Computer Systems (Preliminary Report)
Author
Liu, Lishing
Author_Institution
MITRE Corp.
fYear
1980
fDate
14-16 April 1980
Firstpage
22
Lastpage
22
Abstract
A formal model of multilevel security systems is presented. We examine weaknesses of current security flow analysis mechanisms. A concept of expression flows is introduced, which allows us to use various techniques to certify systems that cannot be certified using current flow analysis techniques. We provide a method for generating static authorization requirements for systems in which authorization functions are only partially specified. We also attack the problem of using dynamic authorization functions for system certification.
Keywords
Algorithms; Authorization; Encryption; Finite element methods; Formal specifications; Lattices;
fLanguage
English
Publisher
ieee
Conference_Titel
Security and Privacy, 1980 IEEE Symposium on
Conference_Location
Oakland, CA, USA
ISSN
1540-7993
Print_ISBN
0-8186-0335-6
Type
conf
DOI
10.1109/SP.1980.10001
Filename
6233699
Link To Document