Looking back at the bell-La padula model

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn 2005, Issue , 2005, Pages 337-351

  Bell, David Elliott ^a  

^a NONE

Author keywords

[No Author keywords available]

Indexed keywords

CONCEPTUAL TOOLS; SECURITY MODELS; SECURITY PRINCIPLES;

COMPUTER NETWORKS; COMPUTER SCIENCE; MATHEMATICAL MODELS; SECURITY OF DATA;

SECURITY SYSTEMS;

EID: 33846272388     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/CSAC.2005.37     Document Type: Conference Paper

References (44)

1. J. P. Anderson, "Computer Security Technology Planning Study," ESD-TR-73-51, Vol. I, AD-758 206, ESD/AFSC, Hanscom AFB, MA, October 1972, p. 4.
2. Paul A. Karger and Roger R. Schell, "Multics Security Evaluation: Vulnerability Analysis," ESD-TR-74-193, Vol. II, ESD/AFSC, Hanscom AFB, MA, June 1974.
3. Ken Thompson, "Reflections on Trusting Trust," Comm ACM, August 1984, 27(8), 761-763.
4. Ken Thompson, "On Trusting Trust," Unix Review, November 1989, 7(11), 70-74.
5. J. P. Anderson, "Computer Security Technology Planning Study," ESD-TR-73-51, Vol. II, ESD/AFSC, Hanscom AFB, MA, October 1972, p. 16.
6. D. Elliott Bell and Leonard J. La Padula, "Secure Computer Systems: Mathematical Foundations," MTR-2547, Vol. I, The MITRE Corporation, Bedford, MA, 1 March 1973. (ESD-TR-73-278-I)
7. Jerome H. Saltzer, Michael D. Schroeder, "The Protection of Information in Computer Systems," Proceedings of the IEEE, 63(9) (September 1975), pp. 1278-1308.
8. Leonard J. La Padula and D. Elliott Bell, "Secure Computer Systems: A Mathematical Model," MTR-2547, Vol. II, The MITRE Corporation, Bedford, MA, 31 May 1973. (ESD-TR-73-278-II)
9. K. G. Walter et al., "Primitive Models for Computer Security," ESD-TR-74-117, Electronic Systems Division, Hanscom AFB, MA, January, 1974.
10. D. Elliott Bell, "Secure Computer Systems: A Refinement of the Mathematical Model," MTR-2547, Vol. III, The MITRE Corporation, Bedford, MA, December 1973. (ESD-TR-73-278-III), p. 25.
11. Ibid.
12. Ibid., p. 34.
13. Elliott I. Organick. The Multics System: An Examination of its Structure. The MIT Press: Cambridge, MA, 1972.
14. D. Elliott Bell and Leonard J. La Padula, "Secure Computer Systems: Unified Exposition and Multics Interpretation," MTR-2997, The MITRE Corporation, Bedford, MA, July 1975. (ESD-TR-75-306)
15. Ibid., p. 5.
16. Ibid., p. 98.
17. Clifford Stoll. The Cuckoo's Egg. Doubleday: New York, NY, 1989.
18. th ACSAC, Las Vegas, NV, December 2002, 119-126.
19. Bell and La Padula, op. cit., 1975, p. 70-71.
20. E. J. McCauley and P. J. Drongowski, "KSOS-The design of a secure operating system," Proceedings, AFIPS 1979 NCC, v48, 345-353.
21. P. G. Neumann, R. S. Boyer, R. J. Feiertag, K. N. Levitt, and L. Robinson, "A provably secure operating system: The system, its applications, and proofs," Technical Report CSL-116, SRI International, 1980.
22. Marvin Schaefer, R. R. Linde, et al., "Program Confinement in KVM/370," Proceedings, ACM National Conference, Seattle, October, 1977.
23. Jerome Saltzer, "Protection and the Control of Information in Multics," Comm. ACM 17(7), July 1974, 388-402.
24. Department of Defense Trusted Computer System Evaluation Criteria, DoD 5200.28-STD, December 1985.
25. D. Elliott Bell and Edmund L. Burke, "A Software Validation Technique for Certification: The Methodology," MTR-2932, Vol. I, The MITRE Corporation, Bedford, MA, April 1975. (ESD-TR-75-54)
26. Paul Karger et al., "A VMM Security Kernel for the VAX Architecture," Proceedings, 1990 IEEE Symposium on Security and Privacy, Oakland, CA, 7-9 May 1990, 2-19.
27. David Clark and David Wilson, "A Comparison of Commercial and Military Computer Security Policies," Proceedings, 1987 IEEE Symposium on Security and Privacy, Oakland, CA, 27-29 April 1987, 184-194.
28. T. M. P. Lee, "Using Mandatory Integrity to Enforce 'Commercial' Security," Proceedings, 1988 IEEE Symposium on Security and Privacy, Oakland, CA, April 1988, 140-146.
29. William R. Shockley, "Implementing the Clark/Wilson Integrity Policy Using Current Technology," Proceedings, 11th National Computer Security Conference, Baltimore, Maryland, October 1988, 29-37.
30. David Brewer and Michael Nash, "The Chinese Wall Security Policy," Proceedings, 1989 IEEE Symposium on Security and Privacy, Oakland, CA, May 1989, 206-214.
31. Trusted Network Interpretation of the Trusted Computer System Evaluation Criteria, DoD 5200.28-STD, 31 July 1987, NCSC-TG-005.
32. Trusted Database Management System Interpretation of the Trusted Computer System Evaluation Criteria, DoD 5200.28-STD, April 1991, NCSC-TG-021.
33. th National Computer Security Conference, Washington, DC, 1-4 October 1990, 333-339.
34. Clark Weissman, "BLACKER: Security for the DDN, Examples of Al Security Engineering Trades," Proceedings, 1992 IEEE Computer Security Symposium on Research in Security and Privacy, 4-6 May 1992, Oakland, CA, 286-292.
35. D. Elliott Bell, "Secure Computer Systems: A Network Interpretation", Proceedings, Second Aerospace Computer Conference, McLean, VA, 2-4 December 1986, 32-39.
36. TNI, op. cit., Appendix A.
37. st ed.), American Mathematical Society: Ann Arbor, Michigan, 1948.
38. Ibid., p. 163.
39. th National Computer Security Conference, Washington, DC, 1-4 October 1990, 165-171.
40. th National Computer Security Conference, Washington, DC, 1-4 October 1991, 456-471.
41. Carrie Fisher. Postcards from the Edge. Simon & Schuster: New York, NY, 1987.
42. Cynthia E. Irvine, "Considering Lifecycle Subversion," Invited presentation, MLS Workshop, Alexandria, VA, 24 September, 2003.
43. Emory A. Anderson, Cynthia E. Irvine, and Roger R. Schell, "Subversion as a Threat in Information Warfare," Journal of Information Warfare, 3(2), June 2004, pp. 52-65.
44. Dorothy Denning, et al., "A Multilevel Relational Data Model," Proceedings, 1987 IEEE Computer Security Symposium on Research in Security and Privacy, 27-29 April 1987, Oakland, CA, 220-242.