Security policies

Advances in Computers

Volumn 55, Issue C, 2002, Pages 185-235

  Anderson, Ross ^a   Stajano, Frank ^b   Lee, Jong Hyeon ^c  

^a UNIVERSITY OF CAMBRIDGE   (United Kingdom)

^b UNIVERSITY OF CAMBRIDGE   (United Kingdom)

^c NONE   (South Korea)

Author keywords

[No Author keywords available]

Indexed keywords

EID: 85016047463     PISSN: 00652458     EISSN: None     Source Type: Book Series    
DOI: 10.1016/S0065-2458(01)80030-9     Document Type: Article

References (81)

1. Amoroso, Edward, Fundamentals of Computer Security Technology, 1994, Prentice-Hall, Englewood Cliffs, New Jersey 0-13-305541-8.
2. AD-758 206, ESD/AFSCAnderson, J., Computer Security Technology Planning Study. Tech. Rep. ESD-TR-73-51, Oct 1972, AFSC, Hanscom AFB, Bedford, MA.
3. Anderson, M., North, C., Griffin, J., Milner, R., Yesberg, J., Yiu, K., Starlingt: Interactive Link. 12th Annual Computer Security Applications Conference, 1996, IEEE 0-8186-7606-X, 55–63.
4. Research in Security and PrivacyAnderson, Ross, A Security Policy Model for Clinical Information Systems. Proceedings of the IEEE Symposium on Research in Security and Privacy, May 1996, IEEE Computer Society, Technical Committee on Security and Privacy, IEEE Computer Society Press, Oakland, CA, 30–43.
5. URLAnderson, Ross, How to Cheat at the Lottery (or, Massively Parallel Requirements Engineering. Proceedings of the Annual Computer Security Applications Conference 1999, Phoenix, AZ, USA, 1999 http://www.cl.cam.ac.uk/≈rja14/lottery/lottery.html.
6. URLAnderson, Ross J., The DeCODE Proposal for an Icelandic Health Database. L/oeknabladhidh (The Icelandic Medical Journal 84:11 (Nov 1998), 874–875 http://www.cl.cam.ac.uk/users/rja14/iceland/iceland.html The printed article is an excerpt from a document produced for the Icelandic Medical Association. The full text of the latter is available online.
7. URLAnderson, Ross J., Comment on the Security Targets for the Icelandic Health Database, 1999 http://www.ftp.cl.cam.ac.uk/ftp/users/rja14/iceland/admiral.pdf.
8. Anderson, Ross J., Security Engineering: A Guide to Building Dependable Distributed Systems, 2001, Wiley 0-471-38922-6.
9. Anderson, Ross John, Why Cryptosystems Fail. Communications of the ACM 37:11 (1994), 32–40.
10. Anderson, Ross John, Security in Clinical Information Systems, Jan 1996, British Medical Association 0-7279-1048-5.
11. Anderson, Ross John, Lee, Jong-Hyeon, Jikzi: A New Framework for Secure Publishing. Proceedings of Security Protocols Workshop '99, Cambridge, Apr 1999.
12. Ross John Anderson and Jong-Hyeon Lee: “Jiki—A New Framework for Security Policy, Trusted Publishing and Electronic Commerce”. Computer Communications to appear.
13. Oakland, CABadger, L., Sterne, D.F., Sherman, D.L., Walker, K.M., Haghighat, S.A., Practical Domain and Type Enforcement for UNIX. Proceedings of the 5th USENIX UNIX Security Symposium, May 1995, 66–77.
14. Bell, D. Elliot, LaPadula, Leonard J., Secure Computer Systems: Mathematical Foundations. Mitre Report ESD-TR-73-278, Vol. I–III, Apr 1974, Mitre Corporation, Bedford, MA.
15. Benkart, T., Bitzer, D., BFE Applicability to LAN Environments. Seventeenth National Computer Security Conference, 11–14 Oct 1994, NIST, Baltimore, Maryland, 227–236.
16. Berson, T., Barksdale, G., KSOS-Development Methodology for a Secure Operating System. Proc. NCC, Jun 1979, AFIPS, AFIPS Press, Montvale, NJ, 365–371.
17. Biba, Ken, Integrity Considerations for Secure Computing Systems. Mitre Report MTR-3153, 1975, Mitre Corporation, Bedford, MA.
18. URLBlaze, Matt, Feigenbaum, Joan, Ioannidis, John, Keromytis, A., The Key Note Trust-Management System Version 2. IETF RFC 2704, Sep 1999, Internet Engineering Task Force http://www.cis.ohio/state.edu/htbin/rfc/rfc2704.html.
19. Blaze, Matt, Feigenbaum, Joan, Lacy, Jack, Decentralized Trust management. Proceedings of the IEEE Symposium on Research in Security and Privacy, Research in Security and Privacy, May 1996, IEEE Computer Society, Technical Committee on Security and Privacy, IEEE Computer Society Press, Oakland, CA.
20. Boebert, W.E., Kain, R.Y., A Practical Alternative to Hierarchical Integrity Policies. Proceedings of the 8th National Computer Security Conference, 1985, NIST, 18–27.
21. Oakland, CABrewer, David F.C., Nash, Michael J., The Chinese Wall Security Policy. 1989 IEEE Symposium on Security and Privacy, 1989, 206–214.
22. Cant, C., Wiseman, S., Simple Assured Bastion Hosts. 13th Annual Computer Security Application Conference, 1997, IEEE Computer Society 0-8186-8274-4, 24–33.
23. Recommendations X.500-X.521, IXth Plenary Assembly CCITT, Data Communications Networks Directory. Tech. Rep. 8, Nov 1988, CCITT, Melbourne.
24. Oakland, CAClark, David D., Wilson, David R., A Comparison of Commerical and Military Computer Security Policies. 1987 IEEE Symposium on Security and Privacy, 1987, 184–194.
25. Curtis, Bill, Krasner, Herb, Iscoe, Neil, A Field Study of the Software Design Process for Large Systems. Communications of the ACM 31:11 (Nov 1988), 1268–1287.
26. Denley, I., Weston-Smith, S., Privacy in clinical information systems in secondary care. British Medical Journal 318 (May 1999), 1328–1331.
27. Dorothy E., Denning, A Lattice Model of Secure Information Flow. Papers from the Fifth ACM Symposium on Operating Systems Principles (Univ. Texas, Austin, Tex., 1975) Communications of the ACM, 19, May 1976, 236–243.
28. Denning, Dorothy E., A Lattice Model of Secure Information Flow. Communications of the ACM 19:5 (May 1976), 236–243.
29. Dorothy, E.R., Denning. Cryptography and Data Secuirty, 1982, Addison-Wesley, Reading 0-201-10150-5.
30. Diffie, Whitfield, Hellman, Martin E., New directions in cryptography. IEEE Transactions on Information Theory IT-22:6 (1976), 644–654.
31. Ellison, Carl, The nature of a useable PKI. Computer Networks 31:8 (May 1999), 823–830.
32. URLEllison, Carl M., Frantz, Bill, Lampson, Butler, Rivest, Ron, Thomas, Brian M., Ylonen, Tatu, SPKI Certificate Theory. IETF RFC 2693, Sep 1999, Internet Engineering Task Force http://www.cis.ohio.state.edu/htbin/rfc/rfc2693.html.
33. Epstein, J., Orman, H., McHugh, J., Pascale, R., Branstad, M., Marmor-Squires, A., A High Assurance Window System Prototype. Journal of Computer Security 2:2–3 (1993), 159–190.
34. Epstein, J., Pascale, R., User Interface for a High Assurance Windowing System. Ninth Annual Computer Security Applications Conference, 6–10 Dec 1993, IEEE, Orlando, Florida, USA 0-8186-4330-7, 256–264.
35. Architecture of the windowing portion of Sun's CMWFaden, Glenn, Reconciling CMW Requirements with Those of X11 Applications. Proceedings of the 14th Annual National Computer Security Conference, Washington, DC, USA, Oct. 1991.
36. Fenton, J.S., Information Protection Systems. PhD dissertation, 1973, Cambridge University.
37. Ferraiolo, D., Kuhn, R., Role-Based Access Controls. 15th NIST-NCSC National Computer Security Conference, Oct 1992, 554–563.
38. Foley, Simon N., Aggregation and separation as noninterference properties. Journal of Computer Security 1:2 (1992), 158–188.
39. Fraim, L.J., SCOMP: A Solution to the Multilevel Security Problem. Computer 16:7 (Jul 1983), 26–34.
40. Fraser, T., LOMAC: Low Water-Mark Integrity Protection for COTS Environments. Proceedings of the 2000 IEEE Symposium on Security and Privacy, 2000, IEEE Computer Society Press, 230–245.
41. Goguen, J.A., Meseguer, J., Security Policies and Security Models. Proceedings of the 1982 Symposium on Security and Privacy (SSP '82), Apr 1990, IEEE Computer Society Press, Los Alamitos, CA., USA, 11–20.
42. (also published by the Defense Intelligence Agency as document DDS-2600-6243-91)Graubart, R.D., Berger, J.L., Woodward, J.P.L., Compartmented Mode, Workstation Evaluation Criteria, Version 1. Revised requirements for the CMW, including a description of what they expect for Trusted X Tech. Rep. MTR 10953, Jun 1991, The MITRE Corporation, Bedford, MA, USA.
43. Harrison, Michael A., Ruzzo, Walter L., Ullman, Jeffrey D., Protection in Operating Systems. Communications of the ACM 19:8 (Aug 1976), 461–471.
44. Huber, G., CMW Introduction. ACM SIGSAC 12:4 (Oct 1994), 6–10.
45. Kang, M.H., Moskowitz, I.S., A Pump for Rapid, Reliable, Secure Communications. ACM, (eds.) Fairfax 93: 1st ACM Conference on Computer and Communications Security, 3–5 November, 1993, Fairfax, Virginia, 1993, ACM Press, New York, NY 10036, USA 0-89791-629-8, 118–129.
46. Kang, M.H., Froscher, J.N., Moskowitz, I.S., An Architecture for Multilevel Secure Interoperability. 13th Annual Computer Security Applications Conference, 8–12 Dec 1997, IEEE Computer Society, San Diego, CA, USA 0-8186-8274-4, 194–204.
47. Kang, M.H., Moskowitz, I.S., Montrose, B., Parsonese, J., A Case Study of Two NRL Pump Prototypes. 12th Annual Computer Security Applications Conference, 9–13 Dec 1996, IEEE, San Diego CA, USA 0-8186-7606-X, 32–43.
48. Karger, P.A., Austell, V.A., Toll, D.C., A New Mandatory Security Policy Combining Secrecy and Integrity. Tech. Rep. RC 21717 (97406), Mar 2000, IBM.
49. Lee, Jong-Hyeon, Designing a reliable publishing framework. Tech. Rep. 489, Apr 2000, University of Cambridge Computer Laboratory.
50. Lomas, Mark, Auditing against Multiple Policies (Transcript of Discussion). Proceedings of Security Protocols Workshop 1999 No. 1796 in Lecture Notes in Computer Science, Apr 1999, Springer-Verlag, 15–20.
51. Lorenz, Konrad, Er redete mit dem Vieh, den Vögeln und den Fischen (King Solomon's ring). 1949, Borotha-Schoeler, Wien.
52. Special Section on Security and PrivacyMcCullough, Daryl, A Hookup Theorem for Multilevel Security. IEEE Transactions on Software Engineering 16:6 (Jun 1990), 563–568.
53. McLean, J., Security Models. Encyclopedia of Software Engineering, 1994, John Wiley & Sons.
54. McLean, John, A comment on the ‘basic security theorem’ of Bell and LaPadula. Information Processing Letters 20:2 (Feb 1985), 67–70.
55. Moynihan, D.P., Secrecy—The American Experience, 1999, Yale University Press 0-300-08079-4.
56. Mukherjee, Paul, Stavridou, Victoria, The Formal Specification of Safety Requirements for Storing Explosives. Formal aspects of Computing 5:4 (1993), 299–336.
57. Nash, M., Kennett, R., Implementing Security Policy in a Large Defence Procurement. 12th Annual Computer Security Applications Conference, 9–13 Dec 1996, IEEE, San Diego, CA, USA 0-8186-7606-X, 15–23.
58. National Security Agency “The NSA Security Manual”. Tech. rep., NSA. URL.
59. http://www.cl.cam.ac.uk/ftp/users/rja14/nsaman.tex.gz (Leaked copy.).
60. Needham, Roger Michael, Schroeder, Michael, Using Encryption for Authentication in Large Networks of Computers. Communications of the ACM 21:12 (1978), 993–999.
61. Neuman, B. Clifford, Kohl, John T., “The Kerberos Network Authentication Service (V5)”. IETF RFC 1510, Sep 1993, Internet Engineering Task Force.
62. URL NIST, Common Criteria for Information Technology Security Version 2.1. Tech. Rep. ISO IS 15408, Jan 2000 http://csrc.nist.gov/cc/.
63. URL Public Record Office, Functional Requirements for Electronic Record Management Systems, Nov 1999 http://www.pro.gov.uk/recordsmanagement/eros/invest/reference.pdf.
64. Pomeroy, B., Wiseman, S., Private Desktops and Shared Store. Computer Security Applications Conference, 1998, IEEE, Phoenix, AZ, USA 0-8186-8789-4, 190–200.
65. URLRivest, Ronald L., Lampson, Butler W., SDSI—A Simple Distributed Security Infrastructure. V1.0 presented at USENIX 96 and Crypto 96, Apr 1996 http://theory.lcs.mit.edu/~cis/sdsi.html.
66. Rushby, J., Randell, B., A Distributed Secure System. IEEE Computer, Jul 1983, IEEE, 55–67.
67. Schell, RR, Computer Security: The Achilles' Heel of the Electronic Air Force?. Air University Review 30:2 (Jan–Feb 1979), 16–33.
68. URLSchell, RR, Downey, PJ, Popek, GJ, Preliminary notes on the design of secure military computer systems. Tech. Rep. MCI-73-1, 1 Jan 1973, Electronic Systems Division, Air Force Systems Command http://seclab.cs.ucdavis.edu/projects/history/papers/sche73.pdf.
69. URLStajano, Frank, Anderson, Ross, The Resurrecting Duckling: Security Issues in Ad-Hoc Wireless Networks. Also available as AT&T Laboratories Cambridge Technical Report 1999.2 Christianson, Bruce, Crispo, Bruno, Roe, Mike, (eds.) Security Protocols, 7th International Workshop Proceedings Lecture Notes in Computer Science, 1999, Springer-Verlag http://www.cl.cam.ac.uk/~fm7/ducking/.
70. rd AT&T Software Symposium, Middletown, New Jersey, USA, Oct 1999 http://www.cl.cam.ac.uk/~fm7/duckling/.
71. Gaithersburg, Md.Sutherland, David, A Model of Information. Proc. 9th National Security Conference, 1986, 175–183.
72. US Department of Defense, Technical Rationale behind CSC-STD-003-85: computer security requirements. Tech. Rep. CSC-STD-004-85, 1985, US Department of Defense.
73. US Department of Defense, Trusted Computer System Evaluation Criteria. Tech. Rep. 5200.28, 1985, US Department of Defense.
74. Revised 21 Nov 1973Walter, KG, Ogden, WF, Rounds, WC, Bradshaw, FT, Ames, SR, Shumway, DG, Models for Secure Computer Systems. Tech. Rep. 1137, 31 Jul 1973, Case Western Reserve University.
75. URLWalter, K.G., Ogden, W.F., Rounds, W.C., Bradshaw, F.T., Ames, S.R., Shumway, D.G., Primitive Models for Computer Security. Tech. Rep. ESD-TR-74-117, 23 Jan 1974, Case Western Reserve University http://www.dtic.mil.
76. Weissman, Clark, Security Controls in the ADEPT-50 Time-Sharing System. Proc. Fall Joint Computer Conference, AFIPS, vol. 35, 1969, 119–133.
77. Weissman, Clark, BLACKER: Security for the DDN, Examples of A1 Security Engineering Trades. Proceedings of the 1992 IEEE Computer Society Symposium on Security and Privacy (SSP '92), May 1992, IEEE 0-8186-2825-1, 286–292.
78. Wilkes, M.V., Needham, R.M., (eds.) The Cambridge Cap Computer and its Operating System, 1979, North-Holland, New York 0-444-00357-6.
79. Revision 1 (also published by the Defense Intelligence Agency as document DDS-2600-5502-87)Woodward, J.P.L., Security Requirements for System High and Compartmented Mode Workstations. The original requirements for the CMW, including a description of what they expect for Trusted X Tech. Rep. MTR 9992, Nov 1987, The MITRE Corporation, Bedford, MA, USA.
80. Wright, P., Spycatcher—The Candid Autobiography of a Senior, Intelligence Officer, 1987, William Heinemann Australia 0-85561-098-0.
81. Zimmermann, Philip R., The Official PGP User's Guide, 1995, MIT Press, Cambridge, MA 0-262-74017-6.