Title :
A hookup theorem for multilevel security
Author :
Cullough, Daryl Mc
Author_Institution :
Odyssey Res. Associates, Ithaca, NY, USA
fDate :
6/1/1990 12:00:00 AM
Abstract :
A security property for trusted multilevel systems, restrictiveness, is described. It restricts the inferences a user can make about sensitive information. This property is a hookup property, or composable, meaning that a collection of secure restrictive systems when hooked together form a secure restrictive composite system. It is argued that the inference control and composability of restrictiveness make it an attractive choice for a security policy on trusted systems and processes
Keywords :
security of data; software engineering; composable; hookup property; hookup theorem; inference control; multilevel security; restrictiveness; secure restrictive composite system; security policy; security property; sensitive information; trusted multilevel systems; user inferences; Control systems; Government; Information processing; Information security; Interconnected systems; Invasive software; Labeling; Multilevel systems; Personnel; Program processors;
Journal_Title :
Software Engineering, IEEE Transactions on
