ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
On the implementation of security measures in information systems
Full text PdfPdf (1.09 MB)
Source
Communications of the ACM archive
Volume 15 ,  Issue 4  (April 1972) table of contents
Pages: 211 - 220  
Year of Publication: 1972
ISSN:0001-0782
Authors
R. W. Conway  Cornell Univ., Ithaca, NY
W. L. Maxwell  Cornell Univ., Ithaca, NY
H. L. Morgan  Cornell Univ., Ithaca, NY
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 12,   Downloads (12 Months): 85,   Citation Count: 22
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/361284.361287
What is a DOI?

ABSTRACT

The security of an information system may be represented by a model matrix whose elements are decision rules and whose row and column indices are users and data items respectively. A set of four functions is used to access this matrix at translation and execution time. Distinguishing between data dependent and data independent decision rules enables one to perform much of the checking of security only once at translation time rather than repeatedly at execution time. The model is used to explain security features of several existing systems, and serves as a framework for a proposal for general security system implementation within today's languages and operating systems.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Allen, Brandt. Danger ahead Safeguard your computer. Harvard Bus. Rev. (Nov.-Dec. 1968), 97-101.
 
2
ASAP Syst. Ref. Man. Compuvisor, Inc., 1971.
 
3
Baran, Paul. On distributed communications: IX. Security, secrecy, and tamper-free considerations. Doc. RM-3765-PR, Rand Corp., Santa Monica, Calif., Aug. 1964.
 
4
Bingham, H.W. Security techniques for EDP of multilevel classified information. Doc. RADC-TR-65-415, Rome Air Dev. Cent., Rome, N.Y., Dec. 1965 (unclassified).
 
5
Carrol, J.M., and McLelland, P.M. Fast infinite key privacy transformation for resource sharing systems. Proc. AFIPS 1970 FJCC, Vol. 36, AFIPS Press, Montvale, N.J., pp. 223-230.
 
6
CODASYL Data Base Task Group Report. Rev. Apr. 1971 (available ACM Headquarters).
 
7
CODASYL Systems Committee. A survey of generalized data base management systems. May 1969 (available ACM Headquarters).
8
CORPORATE Codasyl Systems Committee, Introduction to “feature analysis of generalized data base management systems”, Communications of the ACM, v.14 n.5, p.308-318, May 1971  [doi>10.1145/362588.362590]
 
9
Conway, R.W., Maxwell, W.L., and Morgan, H.L. Selective ecurity capabilities in ASAP--A file management system. Proc. AFIPS 1972 SJCC (to appear).
 
10
Conway, R.W., Morgan, H.L., Wagner, R., and Wilcox, T. User's guide to PL/C. Dept. of Comput. Sci., Cornell U., Ithiea, N.Y., 1970.
11
Robert M. Graham, Protection in an information processing utility, Communications of the ACM, v.11 n.5, p.365-369, May 1968  [doi>10.1145/363095.363146]
12
Lance J. Hoffman, Computers and Privacy: A Survey, ACM Computing Surveys (CSUR), v.1 n.2, p.85-103, June 1969  [doi>10.1145/356546.356548]
 
13
Hoffman, Lance J. The formulary model for access control and privacy in computer systems. SLAC Rep. No. 117., Stanford U., Calif., May 1970.
 
14
Martin, James, and Norman, A. The Computerized Society. Prentice-Hall, Englewood Cliffs, N.J., 1970.
 
15
Miller, A.R. Assault on Privacy: Computers, Data Banks, and Dossiers. U. of Michigan Press, Ann Arbor, Mich., 1971.
 
16
MTS User's Guide. U. of Michigan Comput. Cent., Ann Arbor, Mich., 1970.
 
17
Petersen, H.E., and Turn, R. System implications of information privacy. Proc. AFIPS 1967 SJCC Vol. 30, AFIPS Press, Montvale, N.J., pp. 291-300.
 
18
Skatrud, R.O. The applications of cryptographic techniques to data processing. Proc. AFIPS 1969 FJCC Vol. 34, AFIPS Press, Montvale, N.J., pp. 111-117.
 
19
Westin, A. Privacy and Freedom. Atheneum, New York, 1967.

CITED BY  22
Ann S. Michaels , Benjamin Mittman , C. Robert Carlson, A Comparison of the Relational and CODASYL Approaches to Data-Base Management, ACM Computing Surveys (CSUR), v.8 n.1, p.125-151, March 1976
Robert H. Bonczek , James I. Cash , Andrew B. Whinston, A transformational grammar-based query processor for access control in a planning system, ACM Transactions on Database Systems (TODS), v.2 n.4, p.326-338, Dec. 1977
Trong Wu, Space saving key-lock access control system (abstract only), Proceedings of the 15th annual conference on Computer Science, p.374, February 1987, St. Louis, Missouri, United States
Naftaly Minsky, Intentional resolution of privacy protection in database systems, Communications of the ACM, v.19 n.3, p.148-159, March 1976
Kim S. Lee , Huizhu Lu , D. D. Fisher, A hierarchical single-key-lock access control using the Chinese remainder theorem, Proceedings of the 1992 ACM/SIGAPP Symposium on Applied computing: technological challenges of the 1990's, p.491-496, April 1992, Kansas City, Missouri, United States
David Rine, Possibility theory: As a means for modeling computer security and protection, Proceedings of the eighth international symposium on Multiple-valued logic, p.276-286, January 1978, Rosemont, Illinois, United States
E. B. Fernández , R. C. Summers , C. D. Coleman, An authorization model for a shared data base, Proceedings of the 1975 ACM SIGMOD international conference on Management of data, May 14-16, 1975, San Jose, California
Theodore A. Linden, Operating System Structures to Support Security and Reliable Software, ACM Computing Surveys (CSUR), v.8 n.4, p.409-445, Dec. 1976
Dorothy E. Denning , Peter J. Denning, Data Security, ACM Computing Surveys (CSUR), v.11 n.3, p.227-249, Sept. 1979
R. Stockton Gaines , Norman Z. Shapiro, Some security principles and their application to computer security, ACM SIGOPS Operating Systems Review, v.12 n.3, p.19-28, July 1978
Gerald J. Popek, Correctness in access control, Proceedings of the annual conference, p.236-241, August 27-29, 1973, Atlanta, Georgia, United States
W. E. Boebert , R. Y. Kain, The extended access matrix model of computer security, ACM SIGSOFT Software Engineering Notes, v.10 n.4, August 1985
Peter S. Browne, Computer security: a survey, ACM SIGMIS Database, v.4 n.3, p.1-12, Fall 1972
Teresa F. Lunt , Eduardo B. Fernandez, Database security, ACM SIGMOD Record, v.19 n.4, p.90-97, Dec. 1990
H. Rex Hartson , David K. Hsiao, A semantic model for data base protection languages, Proceedings of the second international conference on Systems for Large Data Bases, p.27-42, September 08-10, 1976, Brussels, Belgium, North Holland
Rainer Hüber , Peter C. Lockemann, Information protection by method base systems, Proceedings of the fourth international conference on Very Large Data Bases, p.420-426, September 13-15, 1978, West Berlin, Germany
Deborah Downs , Gerald J. Popek, A Kernel design for a secure data base management system, Proceedings of the third international conference on Very large data bases, p.507-514, October 06-08, 1977, Tokyo, Japan
Emmanuelle Vaast, Danger is in the eye of the beholders: Social representations of Information Systems security in healthcare, The Journal of Strategic Information Systems, v.16 n.2, p.130-152, June, 2007
Peter S. Browne, Computer security: a survey, Proceedings of the June 7-10, 1976, national computer conference and exposition, June 07-10, 1976, New York, New York
Eduardo B. Fernandez , Rita C. Summers, Integrity aspects of a shared data base, Proceedings of the June 7-10, 1976, national computer conference and exposition, June 07-10, 1976, New York, New York
Michael L. Coleman, ACCNET: a corporate computer network, Proceedings of the June 4-8, 1973, national computer conference and exposition, June 04-08, 1973, New York, New York
Franklin G. Woodward , Lance J. Hoffman, Worst-case costs for dynamic data element security decisions, Proceedings of the 1974 annual ACM conference, January 01-01, 1974

INDEX TERMS

Keywords:
access control confidentiality, access management, data banks, management information systems, operating systems, privacy, security

Collaborative Colleagues:
R. W. Conway: colleagues
W. L. Maxwell: colleagues
H. L. Morgan: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player