ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
Formal Models for Computer Security
Full text PdfPdf (2.98 MB)
Source ACM Computing Surveys (CSUR) archive
Volume 13 ,  Issue 3  (September 1981) table of contents
Pages: 247 - 278  
Year of Publication: 1981
ISSN:0360-0300
Author
Carl E. Landwehr  Code 7593, Naval Research Laboratory, Washington, D.C.
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 62,   Downloads (12 Months): 380,   Citation Count: 63
Additional Information:

references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/356850.356852
What is a DOI?

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
AMES78
AMES, S R., AND OESTREICHER, D. R "Design of a message processing system for a multilevel secure environment," m Proc AFIPS Nat Computer Conf., vol. 47, AFIPS Press, Arhngton, Va, 1978, pp. 765-771.
 
AMES80
AMES, S R, AND KEETON-WILLIAMS, J. G "Demonstrating security for trusted apphcatlons on a security kernel," MITRE Corp, Bedford, Mass., April 1980
 
ANDE72
ANDERSON, J P. "Computer security techno|ogy planning study," ESD-TR- 73-51, vol 1, ESD/AFSC, Hanscom AFB, Bedford, Mass., Oct. 1972 (NTIS AD-758 2O6)
ANDR80
Gregory R. Andrews , Richard P. Reitman, An Axiomatic Approach to Information Flow in Programs, ACM Transactions on Programming Languages and Systems (TOPLAS), v.2 n.1, p.56-76, Jan. 1980  [doi>10.1145/357084.357088]
 
BELL73a
BELL, D E, AND LAPADULA, L J. "Secure computer systems" Mathematical foundations," ESD-TR-73-278, vol. 1, ESD/AFSC, Hanscom AFB, Bedford, Mass., Nov. 1973 (MTR-2547, vol. 1, MITRE Corp., Bedford, Mass.)
 
BELL73b
BELL, D. E., AND LAPADULA, L. J "Secure computer systems' A mathematmal model," ESD-TR-73-278, vol. 2, ESD/AFSC, Hanscom AFB, Bedford, Mass., Nov. 1973 (MTR-2547, vol 2, MITRE Corp., Bedford, Mass.}.
 
BELL74a
BELL, D. E. "Secure computer systems: A refinement of the mathematmal model," ESD-TR-73-278, vol. 3, ESD/ AFSC, Hanscom AFB, Bedford, Mass, April 1974 (MTR 2547, vol. 3, MITRE Corp., Bedford, Mass.}.
 
BELL74b
BELL, D. E, AND LAPADULA, L. J. "Secure computer systems. Mathematical foundations and model," M74-244, MITRE Corp, Bedford, Mass., Oct, 1974.
 
BELL75
BELL, D. E., AND LAPADULA, L. J, "Secure computer system. Unified exposition and multms interpretatmn," MTR-2997, MITRE Corp., Bedford, Mass., July 1975.
 
BIBA77
BIBA, K. J. "Integrity considerations for secure computer systems," ESD-TR- 76-372, ESD/AFSC, Hanscom AFB, Bedford, Mass., April 1977 (MITRE MTR-3153, NTIS AD A039324)
 
BIRK70
BIRKHOFF, G., AND BARTER, T. C. Modern Applied Algebra, McGraw-Hill, New York, 1970, p. 260.
BISH79
Matt Bishop , Lawrence Snyder, The transfer of information and authority in a protection system, Proceedings of the seventh ACM symposium on Operating systems principles, p.45-54, December 10-12, 1979, Pacific Grove, California, United States  [doi>10.1145/800215.806569]
 
BONN80
BONNEAU, C. H "Secure commumcations processor kernel software, detailed specification, part I, rev. D," Honeywell Inc, Aviomcs Diwsion, St. Petersburg, Fla., 1980.
 
BONY78
BONYUN, D. "A new model of computer security with integrity and aggregation considerations," I. P. Sharp Assoc, Ottawa, Ont., Canada, March 1978
 
BOYE79
BOYER, R. S., AND MOORE, J. S. "A theorem-prover for recursive functions A user's manual," Tech. Rep. CSL-91, SRI International, MeMo Park, Calif, June 1979.
COHE77
Ellis Choen, Information transmission in computational systems, Proceedings of the sixth ACM symposium on Operating systems principles, p.133-139, November 16-18, 1977, West Lafayette, Indiana, United States
 
COHE78
COHEN, E. "Information transmmmon in sequential programs," in Foundatmns of secure computatmn, R. A. DeMillo, D. P, Dobkin, A. K Jones, and R. J. Lipton (Eds.), Academic Press, New York, 1978, pp. 297-336.
 
DEMI77
DEMILLO, R. A., DOBKIN, D, AND LIP- TON, R.J. "Even databases that lie can be compromised," IEEE Trans Softw. Eng. SE-4, 1 (Jan. 1977), 74-75.
DENN71
Peter J. Denning, Third Generation Computer Systems, ACM Computing Surveys (CSUR), v.3 n.4, p.175-216, Dec. 1971  [doi>10.1145/356593.356595]
 
DENN75
Dorothy Elizabeth Robling Denning, Secure information flow in computer systems., 1975
DENN76
Dorothy E. Denning, A lattice model of secure information flow, Communications of the ACM, v.19 n.5, p.236-243, May 1976  [doi>10.1145/360051.360056]
DENN77
Dorothy E. Denning , Peter J. Denning, Certification of programs for secure information flow, Communications of the ACM, v.20 n.7, p.504-513, July 1977  [doi>10.1145/359636.359712]
DENN79a
Dorothy E. Denning , Peter J. Denning , Mayer D. Schwartz, The tracker: a threat to statistical database security, ACM Transactions on Database Systems (TODS), v.4 n.1, p.76-96, March 1979  [doi>10.1145/320064.320069]
DENN79b
Dorothy E. Denning , Peter J. Denning, Data Security, ACM Computing Surveys (CSUR), v.11 n.3, p.227-249, Sept. 1979  [doi>10.1145/356778.356782]
DOBK79
David Dobkin , Anita K. Jones , Richard J. Lipton, Secure databases: protection against user influence, ACM Transactions on Database Systems (TODS), v.4 n.1, p.97-106, March 1979  [doi>10.1145/320064.320068]
FEIE77
R. J. Feiertag , K. N. Levitt , L. Robinson, Proving multilevel security of a system design, Proceedings of the sixth ACM symposium on Operating systems principles, p.57-65, November 16-18, 1977, West Lafayette, Indiana, United States
 
FEIE79
FEIERTAG, R. J, AND NEUMANN, P G. "The foundations of a provably secure operating system (PSOS)," in Proc AF- IPS Nat. Computer Conf., vol. 48, AFIPS Press, Arlington, Va, 1979, pp. 329-334.
 
FENT74
FENTON, J. S. "Memoryless subsystems," Comput. J 17, 2 (May 1974), 143- 147.
 
FURT78a
FURTEK, F C. "A validation technique for computer security based on the theory of constraints," ESD-TR-78-182, ESD/AFSC, Hanscom AFB, Bedford, Mass., Dec 1978 (MITRE MTR-3661, NTIS ADA065111).
 
FURT78b
FURTEK, F C. "Constraints and compromise," in Foundations of secure computatmn, R. A. DeMillo, D. P Dobkin, A K. Jones, and R. J. Lipton (Eds.), Academic Press, New York, 1978, pp. 189-204.
 
FURT79
FURTEK, F C. "Doing without values," Proc. 9th Int. Syrup. Multiple-Valued Logic, April 1979, pp. 114-120 (IEEE Cat. no. CH1408-4C).
 
FURT80
FURTEK, F C. "Specification and verification of real-time, distributed systems using the theory of constraints," Tech Rep. P-1027, Charles Stark Draper Laboratory, Cambridge, Mass., April 1980.
 
GNOS80
"GNOSIS External Specifications," Tymshare, Cupertino, Calif., 1980
 
GOLD79
GOLD, B. D, LINDE, R. R., PEELER, R. J, SCHAEFER, M., SCHEID, J. F., AND WARD, P D. "A security retrofit of VM/370," m Proc. AFIPS Nat. Computer Conf., vol. 48, AFIPS Press, Arlington, Va., 1979, pp 335-342
 
GRAH72
GRAHAM, G S., AND DENNING, P. J. "Protectlon--Pnnciples and practice," in Proc 1972 AFIPS Spr~ng Jt Computer Conf, vol. 40, AFIPS Press, Arhngton, Va, pp. 417-429.
 
GROH76
GROHN, M.j. "A model of a protected data management system," ESD-TR-76- 289, ESD/AFSC, Hanscom AFB, Bedford, Mass, June i976 (I P. Sharp, Ottawa, Canada NTIS ADA 035256).
HARR76
Michael A. Harrison , Walter L. Ruzzo , Jeffrey D. Ullman, Protection in operating systems, Communications of the ACM, v.19 n.8, p.461-471, Aug. 1976  [doi>10.1145/360303.360333]
 
HINK75
HINKE, T. H., AND SCHAEFER, M. "Secure data management system," RADC-TR-75-266, Rome Air Dev. Center, AFSC, GriffiNS AFB, N Y., Nov 1975 (NTIS AD A019201)
HOAR69
C. A. R. Hoare, An axiomatic basis for computer programming, Communications of the ACM, v.12 n.10, p.576-580, Oct. 1969  [doi>10.1145/363235.363259]
JONE75
Anita K. Jones , Richard J. Lipton, The enforcement of security policies for computation, Proceedings of the fifth ACM symposium on Operating systems principles, p.197-206, November 19-21, 1975, Austin, Texas, United States
 
JONE76
JONES, A. K., LIPTON, R. J, AND SNY- DER, L. "A linear time algorithm for deciding subJect-object secumty," Proc 17th Ann Foundatmns Computer Sct Conf., Houston, Tex., 1976, pp. 33-41.
 
JONE78a
JONES, A K. "Protection mechamsm models: Their usefulness," m Foundatmns of secure computatmn, R A. DeMiUo, D. P Dobkin, A. K. Jones, and R. J Lipton (Eds.), Academm Press, New York, I978, pp, 237-254.
 
JONE78b
JONES, A. K., AND LIPTON, R.J. "The enforcement of security policies for computation," J. Compt. Syst. Sc~, 17, 1 (Aug. 1978), 35-55.
 
KEMM79
Richard Allen Kemmerer, Formal verification of the ucla security kernel: abstract model, mapping functions, theorem generation, and proofs., 1979
 
KSOS78
"KSOS Verification Plan," WDL- TR7809, Ford Aerospace and Communications Corp, Western Development Lab. Div., Palo Alto, Calif., and SRI International, Menlo Park, Cahf, 1978.
 
LAMP71
LAMPSON, B W. "Protectmn," m Proc. 5th Princeton Syrup. Informatwn Sciences and Systems (March 1971), pp 437-443, reprinted m A CM SIGOPS Operating Syst Rev 8, 1 (Jan 1974), 18-24.
LAMP73
Butler W. Lampson, A note on the confinement problem, Communications of the ACM, v.16 n.10, p.613-615, Oct. 1973  [doi>10.1145/362375.362389]
 
LAND80
LANDWEHR, C E. "Assertions for verification of multilevel secure military message systems," contribution to Workshop on Formal Verification, SRI International, Menlo Park, Calif., April 1980; reprinted in A CM Softw Eng. Notes 5, 3 (July 1980), 46-47
LIPT77
R. J. Lipton , L. Snyder, A Linear Time Algorithm for Deciding Subject Security, Journal of the ACM (JACM), v.24 n.3, p.455-464, July 1977  [doi>10.1145/322017.322025]
 
MCCA79
MCCAULEY, E. J., AND DRONGOWSKI, P.J. "KSOS: The design of a secure operating system," in Proc. AFIPS Nat Computer Conf., vol 48, AFIPS Press, Arlington, Va., 1979, pp. 345-353.
MILL76
Jonathan K. Millen, Security Kernel validation in practice, Communications of the ACM, v.19 n.5, p.243-250, May 1976  [doi>10.1145/360051.360059]
 
MILL78a
MILLEN, J. K "An example of a formal flow violation," in Proc IEEE Computer Soc. 2nd Int. Computer Software and Apphcatmns Conf, Nov 1978, pp. 204- 208
 
MILL78b
MILLEN, J.K. "Constraints and multilevel security," m Foundatwns of Secure Computatmn, R A. DeMfllo, D. P. Dobkin, A. K. Jones, and R. J. Lipton (Eds.), Academm Press, New York, 1978, pp 205-222.
 
MILL78c
MILLEN, J. K "Causal system security," ESD-TR-78-17t, ESD/AFSC, Hanscom AFB, Bedford, Mass., Oct. 1978 (MITRE MTR-3614).
 
NEUM77
NEUMANN, P. G., BOYER, R. S., FEIER- TAG, R J., LEVITT, K. N., AND ROBIN- SON, L "A provably secure operating system. The system, its applications, and proofs," SRI International, Menlo Park, Calif., Feb. 1977.
 
OPNA79
OPNAVINST 5239.1, Department of the Navy, Chmf of Naval Operations, Op- 942E, April 2, 1979.
 
ORGA72
Elliott I. Organick, The Multics System: An Examination of Its Structure, The MIT Press, 1972
 
PARN74
PARNAS0 D L., AND PRICE, W. R. "Using memory access control as the only protection mechanism," in Proc. Int Workshop Protection tn Operating Systems, IRIA/LABORIA, Rocquencourt, France, Aug, 1974, 177-181.
 
POPE73
POPEK, G.J. "Access control models," ESD-TR-73-106 ESD/AFSC, L. G Hanscom Field, Bedford, Mass, Feb 1973 (NTIS AD-761 807).
POPE75
Gerald J. Popek , Charles S. Kline, A verifiable protection system, Proceedings of the international conference on Reliable software, p.294-304, April 21-23, 1975, Los Angeles, California
POPE78a
Gerald J. Popek , David A. Farber, A model for verification of data security in operating systems, Communications of the ACM, v.21 n.9, p.737-749, Sept. 1978  [doi>10.1145/359588.359597]
 
POPE78b
POPEK, G J., KLINE, C. S., AND WAL- TON, E, J. "UCLA Secure Unix," UCLA Tech Rep. (Draft), Feb. 1978.
 
POPE79
POPEK, G. J., KAMPE, M., KLINE, C. S, STOUGHTON, A, URBAN, M., AND WAL- TON, E J. "UCLA secure Unix," in Proc. AFIPS Nat. Computer Conf., vol. 48, AFIPS Press, Arhngton, Va., 1979, pp 355-364.
 
PRIC73
William Robert Price, Implications of a virtual memory mechanism for implementing protection in a family of operating systems, 1973
REIT79
Richard P. Reitman, A mechanism for information control in parallel systems, Proceedings of the seventh ACM symposium on Operating systems principles, p.55-63, December 10-12, 1979, Pacific Grove, California, United States  [doi>10.1145/800215.806570]
 
ROUB77
ROUBINE, 0., AND ROBINSON, L "SPECIAL reference manual," 3rd ed, SRI International, Menlo Park, Calif., 1977.
 
SCHE73
SCHELL, R. R., DOWNEY, P. J, AND POPES, G.J. "Preliminary notes on the design of secure military computer systems," MCI-73-1, ESD/AFSC, Hanscom AFB, Bedford, Mass., Jan. 1973
 
SCHI75
SCHILLER, W L. "The design and specification of a security kernel for the PDP- 11/45," ESD-TR-75-69, MITRE Corp., Bedford, Mass, March 1975.
SCHR77
Michael D. Schroeder , David D. Clark , Jerome H. Saltzer, The Multics kernel design project, Proceedings of the sixth ACM symposium on Operating systems principles, p.43-56, November 16-18, 1977, West Lafayette, Indiana, United States
SCHW79
M. D. Schwartz , D. E. Denning , P. J. Denning, Linear queries in statistical databases, ACM Transactions on Database Systems (TODS), v.4 n.2, p.156-167, June 1979  [doi>10.1145/320071.320073]
SNYD77
Lawrence Snyder, On the synthesis and analysis of protection systems, Proceedings of the sixth ACM symposium on Operating systems principles, p.141-150, November 16-18, 1977, West Lafayette, Indiana, United States
 
SNYD79
SNYDER, L. "Formal models of capability-based protectmn systems," Tech Rep 151, Dept. Computer Scmnce, Yale Univ., New Haven, Conn, April 1979.
WALK80
Bruce J. Walker , Richard A. Kemmerer , Gerald J. Popek, Specification and verification of the UCLA Unix security kernel, Communications of the ACM, v.23 n.2, p.118-131, Feb. 1980  [doi>10.1145/358818.358825]
 
WALT74
WALTER, K. G, OGDEN, W. F., ROUNDS, W. C., BRADSHAW, F. T, AMES, S R., AND SHUMWAY, D. G. "Primmve models for computer security," ESD- TR-4-117, AF/ESD, Hanscom AFB, Bedford, Mass., Jan., 1974 (NTIS AD- 778 467).
WALT75a
K. G. Walter , S. I. Schaen , W. F. Ogden , W. C. Rounds , D. G. Shumway , D. D. Schaeffer , K. J. Biba , F. T. Bradshaw , S. R. Ames , J. M. Gilligan, Structured specification of a Security Kernel, Proceedings of the international conference on Reliable software, p.285-293, April 21-23, 1975, Los Angeles, California
 
WALT75b
WALTER, K. G, OGDEN, W. V., GILLI- GAN, J. M., SCHAEFFER, D. D, SCHAEN, S I., AND SHUMWAY, D. G. "Inmal structured specifications for an uncompromlsable computer security system," ESD-TR-75-82, ESD/AFSC, Hanscom AFB, Bedford, Mass., July 1975 (NTIS AD-A022 490).
 
WEIS69
WEISSMAN, C. "Security controls in the ADEPT-50 time sharing system," Proc. 1969 AFIPS Fall Jt Computer Conf., vol. 35, AFIPS Press, Arlington, Va., pp. 119-133.
 
WILS79
WILSON, S H., KALLANDER, J. W., THOMAS, N M, III, KLITZKIE, L. C., AND BUNCH, J. R., JR. "Military message expemment quick look report," NRL Memorandum Rep. 3992, Naval Research Lab., Washington, D.C., April 1979, p. 10.
 
WITH79
WITHINGTON, P.T. "The trusted function m secure decentrahzed processing," MITRE MTR-3892, MITRE Corp., Bedford, Mass, Sept. 1979.
 
YONK76
YONKE, M. D "The XIVUS environment XIVUS working paper no. 1," USC/Information Sciences Institute, Marina del Rey, Calif., April 1976.

CITED BY  63
Adrian Spalka, Formal semantics of confidentiality in multilevel logic databases, Proceedings of the 1994 workshop on New security paradigms, p.64-73, August 1994, Little Compton, Rhode Island, United States
Daniel Le Métayer, Software architecture styles as graph grammars, ACM SIGSOFT Software Engineering Notes, v.21 n.6, p.15-23, Nov. 1996
Janice Glasgow , Glenn Macewen , Prakash Panangaden, A logic for reasoning about security, ACM Transactions on Computer Systems (TOCS), v.10 n.3, p.226-264, Aug. 1992
T. Y. Lin, Bell and LaPadula axioms: a “new” paradigm for an “old” model, Proceedings on the 1992-1993 workshop on New security paradigms, p.82-93, August 1993, Little Compton, Rhode Island, United States
Carl E. Landwehr , Constance L. Heitmeyer , John McLean, A security model for military message systems, ACM Transactions on Computer Systems (TOCS), v.2 n.3, p.198-222, Aug. 1984
Ravinderpal S. Sandhu, The NTree: a two dimension partial order for protection groups, ACM Transactions on Computer Systems (TOCS), v.6 n.2, p.197-222, May 1988
Rein Turn, Security and privacy requirements in computing, Proceedings of 1986 ACM Fall joint computer conference, p.1106-1114, November 1986, Dallas, Texas, United States
Adrian Bullock , Steve Benford, Access control in virtual environments, Proceedings of the ACM symposium on Virtual reality software and technology, p.29-35, September 1997, Lausanne, Switzerland
Janice I. Glasgow , Glenn H. MacEwen, The development and proof of a formal specification for a multilevel secure system, ACM Transactions on Computer Systems (TOCS), v.5 n.2, p.151-184, May 1987
Boris Kogan , S. Jajodia, Concurrency control in multilevel-secure databases based on replicated architecture, ACM SIGMOD Record, v.19 n.2, p.153-162, Jun. 1990
Wm A. Wulf , Chenxi Wang , Darrell Kienzle, A new model of security for distributed systems, Proceedings of the 1996 workshop on New security paradigms, p.34-43, September 17-20, 1996, Lake Arrowhead, California, United States
Tommy Thorn, Programming languages for mobile code, ACM Computing Surveys (CSUR), v.29 n.3, p.213-239, Sept. 1997
Sushil Jajodia , Ravi Sandhu, Toward a multilevel secure relational data model, ACM SIGMOD Record, v.20 n.2, p.50-59, June 1991
Erland Jonsson, An integrated framework for security and dependability, Proceedings of the 1998 workshop on New security paradigms, p.22-29, September 22-26, 1998, Charlottesville, Virginia, United States
Piero Bonatti , Sabrina De Capitani di Vimercati , Pierangela Samarati, An algebra for composing access control policies, ACM Transactions on Information and System Security (TISSEC), v.5 n.1, p.1-35, February 2002
Jonathan M. Silverman, Reflections on the verification of the security of an operating system kernel, ACM SIGOPS Operating Systems Review, v.17 n.5, p.143-154, October 1983
Ravinderpal Singh Sandhu, The schematic protection model: its definition and analysis for acyclic attenuating schemes, Journal of the ACM (JACM), v.35 n.2, p.404-432, April 1988
Piero Bonatti , Sabrina de Capitani di Vimercati , Pierangela Samarati, A modular approach to composing access control policies, Proceedings of the 7th ACM conference on Computer and communications security, p.164-173, November 01-04, 2000, Athens, Greece
W. K. Giloi , P. Behr, Hierarchical function distribution - a design principle for advanced multicomputer architectures, ACM SIGARCH Computer Architecture News, v.11 n.3, p.318-325, June 1983
Carl E. Landwehr , Alan R. Bull , John P. McDermott , William S. Choi, A taxonomy of computer program security flaws, ACM Computing Surveys (CSUR), v.26 n.3, p.211-254, Sept. 1994
K. K. Leong , K. M. Yu , W. B. Lee, A security model for distributed product data management system, Computers in Industry, v.50 n.2, p.179-193, February 2003
Richard Baskerville, Information systems security design methods: implications for information systems development, ACM Computing Surveys (CSUR), v.25 n.4, p.375-414, Dec. 1993
Adrian Spalka, Managing classified documents in a relational database, Proceedings of the fifteenth annual working conference on Database and application security, p.195-208, July 15-18, 2001, Niagara, Ontario, Canada
Susanne Guth , Gustaf Neumann , Mark Strembeck, Experiences with the enforcement of access rights extracted from ODRL-based digital contracts, Proceedings of the 3rd ACM workshop on Digital rights management, October 27-27, 2003, Washington, DC, USA
Vijay V. Raghavan, Toward an integrative model of application-software security, Practicing software engineering in the 21st century, Idea Group Publishing, Hershey, PA, 2003
Shiuh-Pyng Shieh , Wen-Her Yang, Protecting network users in mobile code systems, Journal of Parallel and Distributed Computing, v.64 n.2, p.191-200, February 2004
Xiaolei Qian , Teresa F. Lunt, A Semantic Framework of the Multilevel Secure Relational Model, IEEE Transactions on Knowledge and Data Engineering, v.9 n.2, p.292-301, March 1997
Vijayalakshmi Atluri , Sushil Jajodia , Elisa Bertino, Transaction Processing in Multilevel Secure Databases with Kernelized Architecture: Challenges and Solutions, IEEE Transactions on Knowledge and Data Engineering, v.9 n.5, p.697-708, September 1997
Jonathan D. Moffett , Morris S. Sloman, The Source of Authority for Commercial Access Control, Computer, v.21 n.2, p.59-69, February 1988
J. Kljaich, Jr. , B. T. Smith , A. S. Wojcik, Formal Verification of Fault Tolerance Using Theorem-Proving Techniques, IEEE Transactions on Computers, v.38 n.3, p.366-376, March 1989
Mohamad R. Neilforoshan, Network security architecture, Journal of Computing Sciences in Colleges, v.19 n.4, p.307-313, April 2004
Daniel Le Métayer, Describing Software Architecture Styles Using Graph Grammars, IEEE Transactions on Software Engineering, v.24 n.7, p.521-533, July 1998
T. F. Keefe , W. T. Tsai , J. Srivastava, Database Concurrency Control in Multilevel Secure Database Management Systems, IEEE Transactions on Knowledge and Data Engineering, v.5 n.6, p.1039-1055, December 1993
Donald Mackenzie , Garrel Pottinger, Mathematics, Technology, and Trust: Formal Verification, Computer Security, and the U.S. Military, IEEE Annals of the History of Computing, v.19 n.3, p.41-59, July 1997
Li Gong , Xiaolei Qian, Enriching the Expressive Power of Security Labels, IEEE Transactions on Knowledge and Data Engineering, v.7 n.5, p.839-841, October 1995
Xiaolei Qian , Teresa F. Lunt, A MAC Policy Framework for Multilevel Relational Databases, IEEE Transactions on Knowledge and Data Engineering, v.8 n.1, p.3-15, February 1996
George Cybenko , Annarita Giani , Paul Thompson, Cognitive Hacking: A Battle for the Mind, Computer, v.35 n.8, p.50-56, August 2002
R. S. Sandhu, Recognizing Immediacy in an N-Tree Hierarchy and its Application to Protection Groups, IEEE Transactions on Software Engineering, v.15 n.12, p.1518-1525, December 1989
Wen-Pai Lu , Malur K. Sundareshan, A Model for Multilevel Security in Computer Networks, IEEE Transactions on Software Engineering, v.16 n.6, p.647-659, June 1990
Petros Efstathopoulos , Maxwell Krohn , Steve VanDeBogart , Cliff Frey , David Ziegler , Eddie Kohler , David Mazières , Frans Kaashoek , Robert Morris, Labels and event processes in the asbestos operating system, ACM SIGOPS Operating Systems Review, v.39 n.5, December 2005
Andy Ju An Wang, Web-based interactive courseware for information security, Proceedings of the 6th conference on Information technology education, October 20-22, 2005, Newark, NJ, USA
David M. Nicol , William H. Sanders , Kishor S. Trivedi, Model-Based Evaluation: From Dependability to Security, IEEE Transactions on Dependable and Secure Computing, v.1 n.1, p.48-65, January 2004
Li Gong, On security in capability-based systems, ACM SIGOPS Operating Systems Review, v.23 n.2, p.56-60, April 1989
Zbigniew Michalewicz, Statistical databases: their model, query language and security, Proceedings of the 2nd international workshop on Proceedings of the Second International Workshop on Statistical Database Management, p.391-402, September 27-29, 1983, Los Altos, California
Li Gong , Xiaolei Qian, Computational Issues in Secure Interoperation, IEEE Transactions on Software Engineering, v.22 n.1, p.43-52, January 1996
Bechara Al Bouna , Richard Chbeir , Stefania Marrara, A multimedia access control language for virtual and ambient intelligence environments, Proceedings of the 2007 ACM workshop on Secure web services, November 02-02, 2007, Fairfax, Virginia, USA
Silvana Castano , Giancarlo Martella , Pierangela Samarati, A new approach to security system development, Proceedings of the 1994 workshop on New security paradigms, p.82-88, August 1994, Little Compton, Rhode Island, United States
Hassan Reza, A Methodology for Architectural Design of Concurrent and Distributed Software Systems, The Journal of Supercomputing, v.37 n.3, p.227-248, September 2006
Andy Ju An Wang, Information security models and metrics, Proceedings of the 43rd annual southeast regional conference, March 18-20, 2005, Kennesaw, Georgia
Béchara Al Bouna , Richard Chbeir, Multimedia-based authorization and access control policy specification, Proceedings of the 3rd ACM workshop on Secure web services, November 03-03, 2006, Alexandria, Virginia, USA
Sharon Nachtigal, eBPSM: a new security paradigm for e-business organisations (e-business process security model), Proceedings of the ninth international conference on Electronic commerce, August 19-22, 2007, Minneapolis, MN, USA
Oscar Nierstrasz , Dennis Tsichritzis, An object-oriented environment for OIS applications, Proceedings of the 11th international conference on Very Large Data Bases, p.335-345, August 21-23, 1985, Stockholm, Sweden
Mayank Bawa , Roberto J. Bayardo, Jr. , Rakesh Agrawal, Privacy-preserving indexing of documents on the network, Proceedings of the 29th international conference on Very large data bases, p.922-933, September 09-12, 2003, Berlin, Germany
Rakesh Agrawal , Jerry Kiernan , Ramakrishnan Srikant , Yirong Xu, Hippocratic databases, Proceedings of the 28th international conference on Very Large Data Bases, p.143-154, August 20-23, 2002, Hong Kong, China
Steve Vandebogart , Petros Efstathopoulos , Eddie Kohler , Maxwell Krohn , Cliff Frey , David Ziegler , Frans Kaashoek , Robert Morris , David Mazières, Labels and event processes in the Asbestos operating system, ACM Transactions on Computer Systems (TOCS), v.25 n.4, p.11-es, December 2007
N. B. Idris , W. A. Gray , R. F. Churchhouse, Providing Dynamic Security Control in a Federated Database, Proceedings of the 20th International Conference on Very Large Data Bases, p.13-23, September 12-15, 1994
Bechara Al Bouna , Richard Chbeir, MCSE: a multimedia context-based security engine, Proceedings of the 11th international conference on Extending database technology: Advances in database technology, March 25-29, 2008, Nantes, France
Manpreet Singh , Manjeet Singh Patterh, Security Functional Components for Building a Secure Network Computing Environment, Information Systems Security, v.16 n.6, p.332-343, November 2007
Dejan Baca , Bengt Carlsson , Lars Lundberg, Evaluating the cost reduction of static code analysis for software security, Proceedings of the third ACM SIGPLAN workshop on Programming languages and analysis for security, June 07-13, 2008, Tucson, AZ, USA
Nickolai Zeldovich , Silas Boyd-Wickizer , Eddie Kohler , David Mazières, Making information flow explicit in HiStar, Proceedings of the 7th symposium on Operating systems design and implementation, November 06-08, 2006, Seattle, Washington
Sabrina De Capitani Di Vimercati , Sara Foresti , Pierangela Samarati , Sushil Jajodia, Access control policies and languages, International Journal of Computational Science and Engineering, v.3 n.2, p.94-102, November 2007
Bechara Al Bouna , Richard Chbeir , Stefania Marrara, Enforcing role based access control model with multimedia signatures, Journal of Systems Architecture: the EUROMICRO Journal, v.55 n.4, p.264-274, April, 2009
Mayank Bawa , Roberto J. Bayardo, Jr , Rakesh Agrawal , Jaideep Vaidya, Privacy-preserving indexing of documents on the network, The VLDB Journal — The International Journal on Very Large Data Bases, v.18 n.4, p.837-856, August 2009

INDEX TERMS

Primary Classification:
  K. Computing Milieux
  K.6 MANAGEMENT OF COMPUTING AND INFORMATION SYSTEMS

Additional Classification:
  C. Computer Systems Organization
  C.2 COMPUTER-COMMUNICATION NETWORKS

  D. Software
  D.4 OPERATING SYSTEMS

  H. Information Systems
  H.2 DATABASE MANAGEMENT
      H.2.7 Database Administration
          Subjects: Security, integrity, and protection


General Terms:
Design, Security, Theory

Collaborative Colleagues:
Carl E. Landwehr: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player