Surviving Insider Attacks: A Call for System Experiments

Advances in Information Security

Volumn 39, Issue , 2008, Pages 153-163

  Gligor, Virgil D ^a   Chandersekaran, C Sekar ^b  

^a CARNEGIE MELLON UNIVERSITY   (United States)

^b INSTITUTE FOR DEFENSE ANALYSES   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 84864046807     PISSN: 15682633     EISSN: None     Source Type: Book Series    
DOI: 10.1007/978-0-387-77322-3_9     Document Type: Article

References (18)

1. A. Avizienis and J.-C. Laprie, Dependable Computing: From Concepts to Design Diversity, Proceedings of the IEEE, vol. 74, no. 5, May 1986.
2. A. Avizienis, J.-C. Laprie, B. Rendell, and C. Landwehr, "Basic Concepts and Taxonomy of Dependable and Secure Computing," IEEE Transactions on Dependable and Secure Computing, vol.1, no. 1, Jan-Mar 2004
3. R. Bobba, S.I. Gavrila, V.D. Gligor, H. Khurana, and R. Koleva, "Administering Access Control in Dynamic Coalitions," Proc. of the 19th USENIX Large Installation System Administration Conference (LISA), San Diego, CA, December 2005.
4. D. Boneh and M. Franklin, "Efficinet Generation of Shared RSA Keys," Journal of the ACM (JACM), Vol. 48, Issue 4, July 2001
5. D. D. Clark and D.R. Wilson, "Evolution of a Model for Computer Security," in Report of the Invitational Workshop on Data Integrity, Z. Ruthberg and W.T. Polk (eds.) NIST Special Publication 500=168, Appendix A, September 1989.
6. V.D. Gligor, S. I. Gavrila and D. Ferraiolo, "On the Formal Definition of Separation-of-Duty Policies and their Composition," IEEE Symposium on Security and Privacy, Oakland, California, May 1998, pp. 172-185.
7. J. Gray, "The Transaction Concept: Virtues and Limitations, Proceedings of the VLDB, Cannes, France, 1981.
8. P. Gupta, V. Shmatikov. Key Confirmation and Adaptive Corruptions in the Protocol Security Logic," Joint Workshop on Foundations of Computer Security and Automated Reasoning for Security Protocol Analysis Seattle, August 15 -16, 2006
9. M.S. Hecht, M.E. Carson, C.S. Chandersekaran, R.S. Chapman, L.J. Dotterer, V.D. Gligor, W.D. Jiang, A. Johri, G. L. Luckenbaugh, and N. Vasudevan, "Unix without the Superuser," Proc. of the USENIX Conference, Phoenix, Arizona, June 1987, pp. 243-256.
10. J. Katz, R. Ostrovsky and M. Yung, "Efficient Password-Based Authenticated Key Exchange Using Human-Memorable Passwords," Advanced in Cryptography - Eurocrypt 2001, Innsbruck, Austria, May 2001.
11. "Two-Server Password-Only Authenticated Key Exchange," J. Katz, P. MacKenzie, G.Taban, and V. Gligor, in Proccedings of Applied Cryptography and Network Security (ACNS), N.Y. 2005
12. H. Khurana, V.D. Gligor, and J. Linn, "Reasoning about Joint Administration of Access Policies for Coalition Resources," Proc. of the IEEE International Conference for Distributed Computer Systems - ICDCS, Vienna, Austria, July 2002.
13. National Security Agency, "A Guide to Understanding Trusted Facility Management," National Computer Security Center, NCSC-TG-015, Version 1, 1989.
14. National Security Agency, "A Guide to Understanding Audit in Trusted Systems," National Computer Security Center, NCSC-TG-001, Version 1, 1988
15. P. G. Neumann, "Principled Assuredly Trustworthy Compusable Architectures," DARPA Final Report, SRI Project P11459, December 28, 2004.
16. R. Reeder and R. Maxion, "User Interface Dependability through Goal-Error Prevention," International Conference on Dependable Systems and Networks, Yokohama, Japan, June 2005.
17. J. H. Saltzer and M.D. Schroeder, "The Protection of Information in Computer Systems, " Proccedings of the IEEE, vol. 63, no. 9, Sept. 1975.
18. R. T. Simon and M.E. Zurko, "Separation of Duty in Role-Based Environments," Proceedings of the Computer Security Foundations Workshop, Rockport, Mass. June 1997.