A new security policy for distributed resource management and access control

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

A new security policy for distributed resource management and access control

Full text

Pdf (1.34 MB)

Source

New Security Paradigms Workshop archive
Proceedings of the 1996 workshop on New security paradigms table of contents

Lake Arrowhead, California, United States

Pages: 74 - 86

Year of Publication: 1996

ISBN:0-89791-944-0

Author

Steven J. Greenwald

Center for High Assurance Computer Systems, Naval Research Laboratory, Washington, DC

Sponsor

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 9, Downloads (12 Months): 33, Citation Count: 4

Additional Information:

references cited by index terms collaborative colleagues

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/304851.304870 What is a DOI?

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Maurice J. Bach, The design of the UNIX operating system, Prentice-Hall, Inc., Upper Saddle River, NJ, 1986
	2	D. Bell and L. LaPadula. Secure computer system: Unified exposition and multics interpretation. Technical Report MTR-2997, The MITRE Corporation, Bedford, Massachusetts, March 1976. Available from the National Technical Information Service as report number: AD A023 588.
	3	Glenn S. Benson , Ian F. Akyildiz , William F. Appelbe, A formal protection model of security in centralized, parallel, and distributed systems, ACM Transactions on Computer Systems (TOCS), v.8 n.3, p.183-213, Aug. 1990 [doi>10.1145/99926.99928]
	4	Dorothy E. Denning, A lattice model of secure information flow, Communications of the ACM, v.19 n.5, p.236-243, May 1976 [doi>10.1145/360051.360056]
	5	Department of Defense. Department of defense trusted computer system evaluation criteria. Technical Report DOD 5200.28-STD, Department of Defense, Washington, D.C., December 1985.
	6	D. Downs, J. Rub, K. Kung, and C. Jordan. Issues in discretionary access control. In Proceedings o.f the 1985 Symposium on Security and Privacy, pages 208-218, Oakland, California, 1985.
	7	Simson Garfinkel , Gene Spafford, Practical UNIX security, O'Reilly & Associates, Inc., Sebastopol, CA, 1991
	8	Steven Jon Greenwald , R. E. Newman-Wolfe, The distributed compartment model for resource management and access control, 1994
	9	S. Greenwald and R. Newman-Wolfe. The distributed compartment model for resource management and access control. Technical Report TR94- 035, Department of Computer & Information Sciences, University of Florida, Gainesville, Florida 32611, October 1994. Available via anonymous ftp from site ftp.cis.ufl.edu in cis/tech-reports/tr94 as file tr94-035.ps.Z, or via the World Wide Web with "http://www.cis.ufl.edu/Cas/tech-reports" as the uniform resource locator.
	10	A. Hanushevsky. Security in the IEEE mass storage system reference model. In Twelfth IEEE Symposium on Mass Storage Systems, pages 67-77, Monterey, California, April 1993.
	11	A. Hutt, Editor. Common facilities architecture draft 4.0. Technical report, Object Management Group, Framingham Corporation Center, 492 Old Connecticut Path, Framingham, Massachusetts 01701- 4568, January 1995. Draft 4.0 of the Common Facilities Task Force Architecture document. Also available on the World Wide Web at URL: http://www.omg.org/docs/1995/95-01- 02. ps.
	12	Butler W. Lampson, A note on the confinement problem, Communications of the ACM, v.16 n.10, p.613-615, Oct. 1973 [doi>10.1145/362375.362389]
	13	C. Landwehr and C. Heitmeyer. Military message systems: Requirements and security model. Memorandum Report 4925, Naval Research Laboratory, Washington, D.C., September 1982.
	14	Carl E. Landwehr , Constance L. Heitmeyer , John McLean, A security model for military message systems, ACM Transactions on Computer Systems (TOCS), v.2 n.3, p.198-222, Aug. 1984 [doi>10.1145/989.991]
	15	John McLean, A comment on the `basic security theorem' of Bell and LaPadula, Information Processing Letters, v.20 n.2, p.67-70, Feb. 1985 [doi>10.1016/0020-0190(85)90065-1]
	16	Sape J. Mullender , Guido van Rossum , Andrew S. Tanenbaum , Robbert van Renesse , Hans van Staveren, Amoeba: A Distributed Operating System for the 1990s, Computer, v.23 n.5, p.44-53, May 1990 [doi>10.1109/2.53354]
	17	National Computer Security Center. A guide to understanding covert channel analysis of trusted systems. Technical Report NCSC-TG-030 Version-I, National Security Agency, Fort George G. Meade, Maryland, 1993.
	18	R. Newman-Wolfe, C. Ramirez, H. Pelimuhandiram, M. Montes, M. Webb, and D. Wilson. A brief overview of the DCS distributed conferencing system. In Proceedings o} the USENIX 1991 Summer Usenix Con}erence, pages 437-452, Nashville, Tennessee, June 1991.
	19	Charles P. Pfleeger, Security in computing, Prentice-Hall, Inc., Upper Saddle River, NJ, 1988
	20	R. Sandhu, E. Coyne, H. Feinstein, and C. Youman. Role-based access control: A multi-dimensional view. In Tenth Annual Computer Security Applications Conference, pages 54-62, Orlando, Florida, December 1994.
	21	Ravi S. Sandhu , Edward J. Coyne , Hal L. Feinstein , Charles E. Youman, Role-Based Access Control Models, Computer, v.29 n.2, p.38-47, February 1996 [doi>10.1109/2.485845]
	22	M. Satyanarayanan, Integrating security in a large distributed system, ACM Transactions on Computer Systems (TOCS), v.7 n.3, p.247-280, Aug. 1989 [doi>10.1145/65000.65002]
	23	J. Schiller. Secure distributed computing. Scientific American, pages 72-76, November 1994.
	24	J. Steiner, C. Neuman, and J. Schiller. Kerberos: An authentication service for open network systems. In Proceedings o.f the 1988 Winter USENL~ Conference, pages 191-202, Dallas, Texas, February 1988.
	25	Susan Stepney , Stephen P. Lord, Formal specification of an access control system, Software—Practice & Experience, v.17 n.9, p.575-593, September 1, 1987 [doi>10.1002/spe.4380170903]
	26	B. Tretick, M. Cornwell, C. Landwehr, R. Jacob, and J. Tschohl. User's manual for the secure military message system M2 prototype. Memorandum Report 5757, Naval Research Laboratory, Washington, D.C., March 1986.
	27	S. Wilson, N. Goodwin, E. Bersoff, and I. Thomas N.M. Military message experiment~vol. I executive summary. Technical Report NRL Rep. 4454, Naval Research Laboratory, Washington, D.C., March 1982. Available from the National Technical Information Service as report number: AD All2 789.
	28	J. Woodward. Applications for multilevel secure operating systems. In Proceedings of the A FIPS 1979 National Computer Conference, volume 48, pages 319- 328, Reston, Virginia, June 4-7 1979.

CITED BY 4

	Edward A. Schneider, Security architecture-based system design, Proceedings of the 1999 workshop on New security paradigms, p.25-31, September 22-24, 1999, Caledon Hills, Ontario, Canada
	Dixie B. Baker, Fortresses built upon sand, Proceedings of the 1996 workshop on New security paradigms, p.148-153, September 17-20, 1996, Lake Arrowhead, California, United States
	Steven J. Greenwald, Discussion topic: what is the old security paradigm?, Proceedings of the 1998 workshop on New security paradigms, p.107-118, September 22-26, 1998, Charlottesville, Virginia, United States
	B. E. Carpenter , P. A. Janson, Abstract interdomain security assertions: a basis for extra-grid virtual organizations, IBM Systems Journal, v.43 n.4, p.689-701, January 2004