Applying the dependability paradigm to computer security

Author

Meadows, Catherine

Author_Institution

Center for High Assurance Comput. Syst., Naval Res. Lab., Washington, DC, USA

fYear

1995

fDate

22-25 Aug 1995

Firstpage

75

Lastpage

79

Abstract

Dependability is that property of a computer system such that reliance can justifiably be place on the service it delivers. In this paper, we contrast the way different ways faults are handled in the dependability paradigm with the way they are handled in the current paradigms for secure system design. We show how the current security paradigm is generally restricted to a subset of the types of approaches used in dependability, largely concentrating on fault prevention and removal while neglecting fault tolerance and forecasting, and we argue that this paradigm is fast becoming obsolete. We discuss the implications of extending the security paradigm to cover the full range of options covered by dependability. In particular, we develop a rough outline of a fault model for security and show how it could be applied to better our understanding of the place of both fault tolerance and fault forecasting in computer security

Keywords

fault tolerant computing; reliability; security of data; computer security; dependability paradigm; fault forecasting; fault prediction; fault prevention; fault removal; fault tolerance; reliable service; secure system design; Access control; Computer crime; Computer security; Control systems; Cryptography; Data security; Fault tolerant systems; Natural languages; Probability; Protection;

fLanguage

English

Publisher

ieee

Conference_Titel

New Security Paradigms Workshop, 1995. Proceedings

Conference_Location

La Jolla, CA

Print_ISBN

0-8186-7318-4

Type

conf

DOI

10.1109/NSPW.1995.492346

Filename

492346