Information security: Science, pseudoscience, and flying pigs

Proceedings - Annual Computer Security Applications Conference, ACSAC

Volumn 2001-January, Issue , 2001, Pages 205-216

  Schell, Roger R ^a  

^a Aesec Corporation   (United States)

Author keywords

Computer networks; Computer security; Information security; Information systems; Information technology; Information theory; Internet; Power system protection; Power system security; Pressing

Indexed keywords

COMPUTER NETWORKS; ELECTRIC POWER SYSTEM PROTECTION; INFORMATION SYSTEMS; INFORMATION TECHNOLOGY; INFORMATION THEORY; INTERNET; PRESSING (FORMING); SECURITY OF DATA; SECURITY SYSTEMS;

COMPUTER AND NETWORK SECURITY; GENERAL KNOWLEDGE; HARD PROBLEMS; HARD WORK; POWER SYSTEM PROTECTION; POWER SYSTEM SECURITY; SCIENTIFIC ADVANCES; SYSTEM SECURITY;

NETWORK SECURITY;

EID: 4544282487     PISSN: 10639527     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/ACSAC.2001.991537     Document Type: Conference Paper

References (39)

1. Jelen, George F., Information Security: An Elusive Goal, Program on Information Resources Policy, Harvard University, Cambridge, MA, June 1985
2. Brinkley, D.L. and Schell, R.R., Concepts and Terminology for Computer Security, Information Security, M. Abrams, S.Jajodia, and H.Podell, eds., IEEE Computer Society Press, Los Alamitos, Calif., 1995
3. Jueneman, R.R., Novell Certificate Extension Attributes-Novell Security Attributes, Tutorial and Detailed Design, Document Version 0.998, Novell Inc., August 1998
4. Department of Defense Trusted Computer Security Evaluation Criteria, DOD 5200.28-STD, National Computer Security Center, December 1985
5. Final Evaluation Report, Novell, Incorporated Netware 4.1.1 Server, National Computer Security Center, June 1998
6. Schell, R.R. and Thompson, M.F., Platform Security: What is Lacking? Information Security Technical Report, Vol 5, No. 1, 2000, Elsevier Advanced Technology
7. Denning, D.E., Cryptographic Checksums for Multilevel Database Security. Proc. 1984 Symp. on Security and Privacy, IEEE Computer Society, 1984, pp. 52-61
8. Trusted Network Interpretation of Trusted Computer System Evaluation Criteria, NCSC-TG-005, National Computer Security Center Version 1, 31 July 1987
9. Common Criteria for Information Technology Security Evaluation, CCIB-98-026, ISO/IEC, May 1998
10. Carroll, Lewis, Through the Looking Glass, (1872), English writer, mathematician
11. Carroll, R.T., The Skeptics Dictionary, http://skepdic.com, 1994-2001
12. Trust In Cyberspace, National Academy Press, Washington, D.C. 1998, Fred B. Schneider, Editor
13. R.R. Schell, Computer Security: the Achilles' Heel of the Electronic Air Force, Air University Review, Vol. 30:2, Jan.-Feb., 1979
14. Ware, W. H., ed., Security Controls for Computer Systems: Report of Defense Science Board Task Force on Computer Security, AD # A076617/0, Rand Corporation, Santa Monica, Calif., February 1970, reissued October 1979
15. Anderson, J.P. Computer Security Technology Planning Study. ESD-TR-73-51. Bedford MA: USAF Electronics Systems Division. October 1972
16. Fraim, L.J., SCOMP: A Solution to the Multilevel Security Problem, IEEE Computer, July 1983
17. Whitmore, J.C. et. al., Design for Multics Security Enhancements, ESD-TR-74-176, Honeywell Information Systems, 1974
18. Weissman, C., Security Controls in the ADEPT-50 Time-Sharing System, Fall Joint Computer Conference, 1969
19. J.H. Saltzer and M.R. Schroeder. The Protection of Information in Computer Systems, Proc. IEEE Vol. 63, No. 9, September 1975
20. Denning, D.E. A Lattice Model of Secure Information Flow. Communications of the ACM, Vol 19. No 5, May 1976
21. Bell, D.E. and LaPadula, L.J., Computer Security Model: Unified Exposition and Multics Interpretation, ESD-TR-75-306. MITRE Corporation, Bedford MA, June 1975
22. Biba, K.J., Integrity Considerations for Secure Computer Systems, ESD-TR-76-372, MITRE Corporation, Bedford, MA, April 1977
23. Shockley, W.R., Implementing the Clark/Wilson Integrity Policy Using Current Technology, Proc. 11th National Computer Security Conference, 1988
24. Ames, S.R., et al, Security Kernel Design and Implementation: An Introduction, Computer, IEEE, July 1983
25. Michael D. Schroeder, David D. Clark, and Jerome H. Saltzer, The Multics Kernel Design Project, Proc. Sixth ACM Symposium on Operating System Principles, November 1977
26. Parnas, D.L., A Technique for Software Module Specification with Examples, Communications of the ACM, Vol. 13, No. 5, May, 1972
27. D.P. Reed, and R.K. Kanodia, Synchronization with Eventcounts and Sequencers, Communications of the ACM, Vol.22, No. 2, February 1979
28. Millen, J.K. Security Kernel Validation in Practice. Communications of the ACM. Vol 19. No 5, May 1976
29. Feirtag, R.J. et al., Proving Multilevel Security of a System Design, Proc. Sixth ACM Symposium on Operating Systems Principles, November 1977
30. Padlipsky, M. A., Snow, D. P., and Karger, P. A., Limitations of End-to-End Encryption in Secure Computer Networks, The MITRE Corporation, MTR-3592, Vol. I, May 1978 (ESD TR 78-158, DTIC AD A059221)
31. Final Evaluation Report, Gemini Network Processor, Version 1.01, National Computer Security Center, pp 123-124, June 1995
32. W.R. Shockley, et al. A Network of Trusted Systems. Proc. AIAA/ASIS/IEEE Third Aerospace Computer Security Conf., 1987
33. Fellows J., et al. The Architecture of a Distributed Trusted Computing Base. Proc. 10th National Computer Security Conference, September 1987
34. Karger, P. A., et al., A Retrospective of the VAX VMM Security Kernel, IEEE Transactions on Software Engineering, Vol. 17, No. 11, Nov. 1991
35. Shockley, W.R. and Schell, R.R., TCB Subsets for Incremental Evaluation, Proc. of the 3rd Aerospace Computer Security Conference, American Institute of Aeronautics and Astronautics, Washington D.C., 1987
36. C. Weissman, Blacker: Security for the DDN. Examples of A1 Security Engineering Trades. Proc. 1992 Symp.Research in Security and Privacy, IEEE Computer Society, 1992, pp. 286-292
37. Lunt, T. F., et al., The SeaView Security Model, IEEE Transaction on Software Engineering, Vol. 16, No. 6, June 1990
38. Trusted Database Management System Interpretation of the Trusted Computer System Evaluation Criteria, NCSC-TG-021, National Computer Security Center, April 1991
39. Bill Caelli, Bring in E-Trading PIN Pads, The Australian newspaper, Sydney, Australia, 24 October 2000