Enforcing well-formed and partially-formed transactions for unix

8th USENIX Security Symposium

Volumn , Issue , 1999, Pages

  Povey, Dean ^a  

^a QUEENSLAND UNIVERSITY OF TECHNOLOGY   (Australia)

Author keywords

[No Author keywords available]

Indexed keywords

CRITICAL COMPONENT; END USERS; PROTOTYPE IMPLEMENTATIONS; REFERENCE MONITORS; SOLARIS;

ACCESS CONTROL;

EID: 85084164092     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (21)

1. Lee Badger, Daniel F. Sterne, David L. Sherman, Kenneth M. Walker, and Sheila A. Haghihat. Practical domain and type enforcement for UNIX. In Proceedings of the 1995 IEEE Symposium on Security and Privacy, pages 66-77, 1995.
2. D. E. Bell and L.J. LaPadula. Secure computer systems. Technical Report ESD-TR-73-278 (Vol I-III) (also Mitre TR-2547), Mitre Corporation, Bedford, MA, April 1974.
3. Andrew Berman, Virgil Bourassa, and Erik Selberg. TRON: Process-specific file protection for the UNIX operating system. In Proceedings of the 1995 USENIX Winter Technical Conference, pages 165-175, 1995.
4. M. Bishop. Unix security: Security in programming. SANS'96. Washington DC, May 1996. URL: http://seclab.cs.ucdavis.edu/bishop/secprog.html.
5. David D. Clark and David R. Wilson. A comparison of commercial and military security policies. In 1987 IEEE Symposium on Security and Privacy, pages 184-194, Oakland, CA, April 1987.
6. G. Fernandez and L. Allen. Extending the Unix protection model with access control lists. In Proceedings of the Summer 1998 USENIX Conference, pages 119-132, 1988.
7. David Ferraiolo and Richard Kuhn. Role-based access control. In Proceedings of the 15th National Computer Security Conference, 1992.
8. Simon N. Foley. Evaluating system integrity. In New Security Paradigms Workshop. ACM press, 1998.
9. Peter Gal vin. The Unix secure programming faq - tips on security design principles, programming methods and testing. Sunworld, August 1998. URL: http: / / www.sunworld.com/swol-08-1998/ swol-08-security.html.
10. H. Garcia-Molina and K. Salem. S In Proceedings of the ACM SIGMOD International Conference on the Management of Data, pages 249-259, New York, NY, 1987. ACM press.
11. Ian Goldberg, David Wagner, Randi Thomas, and Eric A. Brewer. A secure environment for untrusted helper applications - confining the wily hacker. In Proceedings of the Sixth USENIX Security Symposium,, San Jose, California, July 1996.
12. John D. Howard. An Analysis Of Security Incidents On The Internet:!989 - 1995. PhD thesis, Carnegie Mellon University, April 1997. URL: http: / / www.cert .org/research / JHThesis / Start-.html.
13. Dean Kuo, Michael Lawley, Chengfei Liu, and Maria Orlowska. A model for transactional workflows. Australian Computer Science Communications, 18(2):139-146, 1996.
14. Dennis Longley, Michael Shain, and William Caelli. Information Security - Dictionary of concepts, standards and terms. Macmillan, 1992.
15. Peter G. Neumann. Computer related risks. Addison-Wesley, 1995.
16. Dean Povey. Optimistic security: A new access control paradigm. In Proceedings of the 1999 New Security Paradigms Workshop, September 1999. to appear.
17. Krithi Ramamritham and Panos K. Chrysanths. Executive Briefing: Advances in Concurrency Control and Transaction Processing. IEEE Computer Society Press, Los Alamitos, CA, 1997.
18. Jerome H. Saltzer and Michael D. Schroeder. The protection of information in computer systems. Proceedings of the IEEE, 63(9):1278-1308, September 1975.
19. sudo. URL: http://ftp.courtesan.com/pub/sudo.
20. super. U R L: http: //ftp.ucolick.org/pub/users/will/ .
21. Department of Defense Trusted Computer System Evaluation Criteria. Department of Defense Computer Security Center, Fort Meade, MD, August 1983.