Title :
Using mandatory integrity to enforce `commercial´ security
Author :
Lee, Theodore M P
Author_Institution :
Trusted Inf. Syst. Inc., Minnetonka, MN, USA
Abstract :
Government research, development, and standardization efforts in computer security have been repeatedly criticized as not being applicable to the commercial world. In particular, they have been criticized as not being able to support the kinds of security policies, such as separation of duties and well-formed transactions, used by the financial and other communities to control unauthorized changes to or falsification of information. It is shown two natural extensions-integrity categories and partially trusted subjects-of the principles of current US Department of Defense computer security standards could be used to implement such commercial security policies in a way that exploits the fundamental strengths of existing or future trusted systems
Keywords :
operating systems (computers); security of data; standards; US Department of Defense; commercial security policies; computer security; falsification; integrity categories; mandatory integrity; partially trusted subjects; security policies; security standards; standardization; trusted systems; unauthorized changes; Access control; Books; Computer security; Context modeling; Control systems; Government; Information security; Kernel; National security; Neutron spin echo;
Conference_Titel :
Security and Privacy, 1988. Proceedings., 1988 IEEE Symposium on
Conference_Location :
Oakland, CA
Print_ISBN :
0-8186-0850-1
DOI :
10.1109/SECPRI.1988.8106
