Title :
A rigorous approach to determining objects
Author :
Faigin, D.P. ; Donndelinger, J.J. ; Jones, J.R.
Author_Institution :
Aerosp. Corp., El Segundo, CA, USA
Abstract :
This paper describes RODA-the Rigorous Object Determination Approach. RODA is a way of determining the objects that require protection in a trusted system in a consistent fashion, as opposed to the current ad-hoc methods. It is applicable to all trusted systems, but is most useful in low to medium assurance systems. It begins by examining accessibility through the TCB interface and developing a list of candidate objects. These candidate objects are refined and grouped based on characteristics such as namability, potential manipulators, and information flow. The results of information collection are then analyzed to determine the named and storage objects in the system. The paper includes a brief example of the use of the technique
Keywords :
security of data; RODA; Rigorous Object Determination Approach; TCB interface; accessibility; trusted system; Computer interfaces; Computer networks; Computer security; Contracts; Information analysis; Information security; Information systems; National security; Operating systems; Protection;
Conference_Titel :
Computer Security Applications Conference, 1993. Proceedings., Ninth Annual
Conference_Location :
Orlando, FL
Print_ISBN :
0-8186-4330-7
DOI :
10.1109/CSAC.1993.315442
