Protection

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback
Take a look at the new version of this page: [ beta version ]. Tell us what you think.

Protection

Full text

Pdf (619 KB)

Source

ACM SIGOPS Operating Systems Review archive
Volume 8 , Issue 1 (January 1974) table of contents

Pages: 18 - 24

Year of Publication: 1974

ISSN:0163-5980

Author

Butler W. Lampson

Xerox Corporation, Palo Alto, California

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 70, Downloads (12 Months): 361, Citation Count: 106

Additional Information:

abstract references cited by collaborative colleagues

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/775265.775268 What is a DOI?

ABSTRACT

Abstract models are given which reflect the properties of most existing mechanisms for enforcing protection or access control, together with some possible implementations. The properties of existing systems are explicated in terms of the model and implementations.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	P. A. Crisman, ed., <u>The Compatible Time-</u>Sharing System: A Programmer's Guide, second edition, M.I.T. Press, Cambridge, Mass., 1965.
	2	Jack B. Dennis, Segmentation and the Design of Multiprogrammed Computer Systems, Journal of the ACM (JACM), v.12 n.4, p.589-602, Oct. 1965 [doi>10.1145/321296.321310]
	3	Jack B. Dennis , Earl C. Van Horn, Programming semantics for multiprogrammed computations, Communications of the ACM, v.9 n.3, p.143-155, March 1966 [doi>10.1145/365230.365252]
	4	Robert M. Graham, Protection in an information processing utility, Communications of the ACM, v.11 n.5, p.365-369, May 1968 [doi>10.1145/363095.363146]
	5	Per Brinch Hansen, The nucleus of a multiprogramming system, Communications of the ACM, v.13 n.4, p.238-241, April 1970 [doi>10.1145/362258.362278]
	6	M. C. Harrison, Implementations of the SHARER2 time-sharing system, Communications of the ACM, v.11 n.12, p.845, Dec. 1968 [doi>10.1145/364175.364210]
	7	Iliffe, J. K., <u>Basic Machine Principles</u>, American Elsevier, New York, 1968.
	8	Lampson, B. W. et al, "A User Machine in a Time-Sharing System," Proc. IEEE <u>54</u>, 12 (Dec. 1966), p. 1766.
	9	Lampson, B. W., "Dynamic Protection Structures," Proc. AFIPS Conf. <u>35</u> (1969 FJCC), p. 27.
	10	Lampson, B. W., "On Reliable and Extendable Operating Systems," Working Material, Second NATO Conference on Software Engineering, Rome, Oct. 1969.
	11	Linde, R. R. et al, "The ADEPT-50 Time-Sharing System," Proc. AFIPS Conf. <u>35</u> (1969 FJCC), p. 39.
	12	Molho, L., "Hardware Aspects of Secure Computing," Proc. AFIPS Confo <u>36</u> (1970 FJCC), p. 135.
	13	Dean Hanawalt Vanderbilt, Controlled information sharing in a computer utility, Massachusetts Institute of Technology, Cambridge, MA, 1969
	14	Weissman, C., "Security Controls in the ADEPT-50 Time-Sharing System," Proc. AFIPS Conf. <u>35</u>, (1969 FJCC), p. 39.
	15	M. V. Wilkes, Time Sharing Computer Systems, Elsevier Science Inc., New York, NY, 1975

CITED BY 107

	Danilo Bruschi , Emilia Rosti, AngeL: a tool to disarm computer systems, Proceedings of the 2001 workshop on New security paradigms, September 10-13, 2001, Cloudcroft, New Mexico
	Michael A. Harrison , Walter L. Ruzzo , Jeffrey D. Ullman, Protection in operating systems, Communications of the ACM, v.19 n.8, p.461-471, Aug. 1976
	Christian Friberg , Achim Held, Support for discretionary role based access control in ACL-oriented operating systems, Proceedings of the second ACM workshop on Role-based access control, p.83-94, November 06-07, 1997, Fairfax, Virginia, United States
	Jonathon E. Tidswell , Trent Jaeger, An access control model for simplifying constraint expression, Proceedings of the 7th ACM conference on Computer and communications security, p.154-163, November 01-04, 2000, Athens, Greece
	Prasun Dewan , Honghai Shen, Controlling access in multiuser interfaces, ACM Transactions on Computer-Human Interaction (TOCHI), v.5 n.1, p.34-62, March 1998
	Trent Jaeger , Jonathon E. Tidswell, Practical safety in flexible access control models, ACM Transactions on Information and System Security (TISSEC), v.4 n.2, p.158-190, May 2001
	Jonathon E. Tidswell , John M. Potter, A graphical definition of authorization schema in the DTAC model, Proceedings of the sixth ACM symposium on Access control models and technologies, p.109-120, May 2001, Chantilly, Virginia, United States
	Dan S. Wallach , Dirk Balfanz , Drew Dean , Edward W. Felten, Extensible security architectures for Java, ACM SIGOPS Operating Systems Review, v.31 n.5, p.116-128, Dec. 1997
	Danilo Bruschi , Emilia Rosti, Disarming offense to facilitate defense, Proceedings of the 2000 workshop on New security paradigms, p.69-75, September 18-21, 2000, Ballycotton, County Cork, Ireland
	Adrian Bullock , Steve Benford, Access control in virtual environments, Proceedings of the ACM symposium on Virtual reality software and technology, p.29-35, September 1997, Lausanne, Switzerland
	Victoria Ungureanu, An agreement centric access control mechanism for business to business e-commerce, Proceedings of the 2002 ACM symposium on Applied computing, March 11-14, 2002, Madrid, Spain
	Peter J. Denning, Fault Tolerant Operating Systems, ACM Computing Surveys (CSUR), v.8 n.4, p.359-389, Dec. 1976
	G. Saunders , M. Hitchens , V. Varadharajan, Role-based access control and the access control matrix, ACM SIGOPS Operating Systems Review, v.35 n.4, p.6-20, October 2001
	Jonathon E. Tidswell , Geoffrey H. Outhred , John M. Potter, Dynamic rights: safe extensible access control, Proceedings of the fourth ACM workshop on Role-based access control, p.113-120, October 28-29, 1999, Fairfax, Virginia, United States
	David F. Ferraiolo , Ravi Sandhu , Serban Gavrila , D. Richard Kuhn , Ramaswamy Chandramouli, Proposed NIST standard for role-based access control, ACM Transactions on Information and System Security (TISSEC), v.4 n.3, p.224-274, August 2001
	Butler Lampson , Martín Abadi , Michael Burrows , Edward Wobber, Authentication in distributed systems: theory and practice, ACM SIGOPS Operating Systems Review, v.25 n.5, p.165-182, Oct. 1991
	Thorsten Hampel , Reinhard Keil-Slawik, sTeam - Designing an integrative infrastructure for Web-based computer-supported cooperative learning, Proceedings of the 10th international conference on World Wide Web, p.76-85, May 01-05, 2001, Hong Kong, Hong Kong
	R. K. Thomas , R. S. Sandhu, Towards a task-based paradigm for flexible and adaptable access control in distributed applications, Proceedings on the 1992-1993 workshop on New security paradigms, p.138-142, August 1993, Little Compton, Rhode Island, United States
	Erland Jonsson, An integrated framework for security and dependability, Proceedings of the 1998 workshop on New security paradigms, p.22-29, September 22-26, 1998, Charlottesville, Virginia, United States
	Emin Gün Sirer , Robert Grimm , Arthur J. Gregory , Brian N. Bershad, Design and implementation of a distributed virtual machine for networked computers, ACM SIGOPS Operating Systems Review, v.33 n.5, p.202-216, Dec. 1999
	Butler Lampson , Martín Abadi , Michael Burrows , Edward Wobber, Authentication in distributed systems: theory and practice, ACM Transactions on Computer Systems (TOCS), v.10 n.4, p.265-310, Nov. 1992
	Gene C. Barton, Sentry: A novel hardware implementation of classic operating system mechanisms, ACM SIGARCH Computer Architecture News, v.10 n.3, p.140-147, April 1982
	Philippe A. Janson, Dynamic linking and environment initialization in a multi-domain process., ACM SIGOPS Operating Systems Review, v.9 n.5, p.43-50, November 1975
	Ravi Sandhu , Qamar Munawer, How to do discretionary access control using roles, Proceedings of the third ACM workshop on Role-based access control, p.47-54, October 22-23, 1998, Fairfax, Virginia, United States
	HongHai Shen , Prasun Dewan, Access control for collaborative environments, Proceedings of the 1992 ACM conference on Computer-supported cooperative work, p.51-58, November 01-04, 1992, Toronto, Ontario, Canada
	Gunnar Stevens , Volker Wulf, A new dimension in access control: studying maintenance engineering across organizational boundaries, Proceedings of the 2002 ACM conference on Computer supported cooperative work, November 16-20, 2002, New Orleans, Louisiana, USA
	Ravi S. Sandhu, Lattice-Based Access Control Models, Computer, v.26 n.11, p.9-19, November 1993
	Paul A. Karger, The Lattice Security Model In A Public Computing Network, Proceedings of the 1978 annual conference, p.453-459, December 04-06, 1978, Washington, D.C., United States
	H.-P. Dommel , J. J. Garcia-Luna-Aceves, Efficient Group Coordination in Multicast Trees, The Journal of Supercomputing, v.24 n.2, p.183-192, February 2003
	G. J. Myers , B. R. S. Buckingham, A hardware implementation of capability-based addressing, ACM SIGARCH Computer Architecture News, v.8 n.6, p.12-24, October 1980
	Li Gong, Java Security: Present and Near Future, IEEE Micro, v.17 n.3, p.14-19, May 1997
	Paul England , Butler Lampson , John Manferdelli , Marcus Peinado , Bryan Willman, A Trusted Open Platform, Computer, v.36 n.7, p.55-62, July 2003
	G. J. Myers , B. R. S. Buckingham, A hardware implementation of capability-based addressing, ACM SIGOPS Operating Systems Review, v.14 n.4, p.13-25, October 1980
	Gerald Brose, Manageable access control for CORBA, Journal of Computer Security, v.10 n.4, p.301-337, December 2002
	Computer Security in the Real World, Computer, v.37 n.6, p.37-46, June 2004
	Michael A. Harrison , Walter L. Ruzzo , Jeffrey D. Ullman, On protection in operating systems, ACM SIGOPS Operating Systems Review, v.9 n.5, p.14-24, November 1975
	Edward Wobber , Martín Abadi , Michael Burrows , Butler Lampson, Authentication in the Taos operating system, ACM SIGOPS Operating Systems Review, v.27 n.5, p.256-269, Dec. 1993
	Edward Wobber , Martín Abadi , Michael Burrows , Butler Lampson, Authentication in the Taos operating system, ACM Transactions on Computer Systems (TOCS), v.12 n.1, p.3-32, Feb. 1994
	J. D. Bagley , E. R. Floto , S. C. Hsieh , V. Watson, Sharing data and services in a virtual machine system, ACM SIGOPS Operating Systems Review, v.9 n.5, p.82-88, November 1975
	Charlie McDowell, Protection at the micromachine level, ACM SIGARCH Computer Architecture News, v.10 n.1, p.4-8, January 1982
	Prasun Dewan , HongHai Shen, Flexible meta access-control for collaborative applications, Proceedings of the 1998 ACM conference on Computer supported cooperative work, p.247-256, November 14-18, 1998, Seattle, Washington, United States
	L. Ciminiera , A. Valenzano, Authentication Mechanisms in Microprocessor-Based Local Area Networks, IEEE Transactions on Software Engineering, v.15 n.5, p.654-658, May 1989
	Atul Prakash , Hyong Sop Shim , Jang Ho Lee, Data Management Issues and Trade-Offs in CSCW Systems, IEEE Transactions on Knowledge and Data Engineering, v.11 n.1, p.213-227, January 1999
	Peng Liu , Paul Ammann , Sushil Jajodia, Rewriting Histories: Recovering from Malicious Transactions, Distributed and Parallel Databases, v.8 n.1, p.7-40, Jan. 2000
	Anthony Ira Wasserman, A top-down view of software engineering, ACM SIGSOFT Software Engineering Notes, v.1 n.1, p.8-14, May 1976
	Jonathan D. Moffett , Morris S. Sloman, The Source of Authority for Commercial Access Control, Computer, v.21 n.2, p.59-69, February 1988
	Úlfar Erlingsson , John MacCormick, Ad hoc extensibility and access control, ACM SIGOPS Operating Systems Review, v.40 n.3, July 2006
	Jaehong Park , Ravi Sandhu, The UCON_ABC usage control model, ACM Transactions on Information and System Security (TISSEC), v.7 n.1, p.128-174, February 2004
	Emin Gün Sirer , Ke Wang, An access control language for web services, Proceedings of the seventh ACM symposium on Access control models and technologies, June 03-04, 2002, Monterey, California, USA
	Joerg M. Haake , Anja Haake , Till Schümmer , Mohamed Bourimi , Britta Landgraf, End-user controlled group formation and access rights management in a shared workspace system, Proceedings of the 2004 ACM conference on Computer supported cooperative work, November 06-10, 2004, Chicago, Illinois, USA
	Mahesh V. Tripunitara , Ninghui Li, Comparing the expressive power of access control models, Proceedings of the 11th ACM conference on Computer and communications security, October 25-29, 2004, Washington DC, USA
	Oliver Stiemerling , Armin B. Cremers, The Use of Cooperation Scenarios in the Design and Evaluation of a CSCW System, IEEE Transactions on Software Engineering, v.24 n.12, p.1171-1181, December 1998
	Allan Heydon , Mark W. Maimone , J. D. Tygar , Jeannette M. Wing , Amy Moormann Zaremski, Miro: Visual Specification of Security, IEEE Transactions on Software Engineering, v.16 n.10, p.1185-1197, October 1990
	Ninghui Li , Mahesh V. Tripunitara, Security analysis in role-based access control, Proceedings of the ninth ACM symposium on Access control models and technologies, June 02-04, 2004, Yorktown Heights, New York, USA
	Manuel Koch , Francesco Parisi-Presicce, Formal access control analysis in the software development process, Proceedings of the 2003 ACM workshop on Formal methods in security engineering, p.67-76, October 30, 2003, Washington, D.C.
	Denis Caromel , Julien Vayssière, A security framework for reflective Java applications, Software—Practice & Experience, v.33 n.9, p.821-846, 25 July 2003
	David F. Ferraiolo , Serban Gavrila , Vincent Hu , D. Richard Kuhn, Composing and combining policies under the policy machine, Proceedings of the tenth ACM symposium on Access control models and technologies, June 01-03, 2005, Stockholm, Sweden
	William Tolone , Gail-Joon Ahn , Tanusree Pai , Seng-Phil Hong, Access control in collaborative systems, ACM Computing Surveys (CSUR), v.37 n.1, p.29-41, March 2005
	Ninghui Li , John C. Mitchell , William H. Winsborough, Beyond proof-of-compliance: security analysis in trust management, Journal of the ACM (JACM), v.52 n.3, p.474-514, May 2005
	Li Gong , Xiaolei Qian, Computational Issues in Secure Interoperation, IEEE Transactions on Software Engineering, v.22 n.1, p.43-52, January 1996
	Simon N. Foley , John P. Morrison, Computational paradigms and protection, Proceedings of the 2001 workshop on New security paradigms, September 10-13, 2001, Cloudcroft, New Mexico
	Feike W. Dillema , Simone Lupetti, Rendezvous-based access control for medical records in the pre-hospital environment, Proceedings of the 1st ACM SIGMOBILE international workshop on Systems and networking support for healthcare and assisted living environments, June 11-11, 2007, San Juan, Puerto Rico
	Cédric Fournet , Andrew D. Gordon , Sergio Maffeis, A type discipline for authorization policies, ACM Transactions on Programming Languages and Systems (TOPLAS), v.29 n.5, p.25-es, August 2007
	Jason Crampton , George Loizou, Authorisation and antichains, ACM SIGOPS Operating Systems Review, v.35 n.3, p.6-15, July 1 2001
	Timothy Fraser , David Ferraiolo , Mikel L. Matthews , Casey Schaufler , Stephen Smalley , Robert Watson, Panel: which access control technique will provide the greatest overall benefit, Proceedings of the sixth ACM symposium on Access control models and technologies, p.141-149, May 2001, Chantilly, Virginia, United States
	Ninghui Li , Mahesh V. Tripunitara , Qihua Wang, Resiliency policies in access control, Proceedings of the 13th ACM conference on Computer and communications security, October 30-November 03, 2006, Alexandria, Virginia, USA
	Mikko T. Siponen , Harri Oinas-Kukkonen, A review of information security issues and respective research contributions, ACM SIGMIS Database, v.38 n.1, February 2007
	Andrea Bottoni , Gianluca Dini, An overview of VOAC, a virtual organizations access control infrastructure, Proceedings of the 24th IASTED international conference on Parallel and distributed computing and networks, p.29-34, February 14-16, 2006, Innsbruck, Austria
	Ninghui Li , Mahesh V. Tripunitara, Security analysis in role-based access control, ACM Transactions on Information and System Security (TISSEC), v.9 n.4, p.391-420, November 2006
	Ravi Sandhu , Kumar Ranganathan , Xinwen Zhang, Secure information sharing enabled by Trusted Computing and PEI models, Proceedings of the 2006 ACM Symposium on Information, computer and communications security, March 21-24, 2006, Taipei, Taiwan
	Huaxin Zhang , Ning Zhang , Kenneth Salem , Donghui Zhuo, Compact access control labeling for efficient secure XML query evaluation, Data & Knowledge Engineering, v.60 n.2, p.326-344, February, 2007
	Angelos D. Keromytis , Jonathan M. Smith, Requirements for scalable access control and security management architectures, ACM Transactions on Internet Technology (TOIT), v.7 n.2, p.8-es, May 2007
	Klaas Sikkel, A group-based authorization model for cooperative systems, Proceedings of the fifth conference on European Conference on Computer-Supported Cooperative Work, p.345-360, September 07-11, 1997, Lancaster, UK
	Ted Wobber , Aydan Yumerefendi , Martín Abadi , Andrew Birrell , Daniel R. Simon, Authorizing applications in singularity, ACM SIGOPS Operating Systems Review, v.41 n.3, June 2007
	Li Gong , Marianne Mueller , Hemma Prafullchandra , Roland Schemers, Going beyond the sandbox: an overview of the new security architecture in the java^TM development Kit 1.2, Proceedings of the USENIX Symposium on Internet Technologies and Systems on USENIX Symposium on Internet Technologies and Systems, p.10-10, December 08-11, 1997, Monterey, California
	Andrew Berman , Virgil Bourassa , Erik Selberg, TRON: process-specific file protection for the UNIX operating system, Proceedings of the USENIX 1995 Technical Conference Proceedings on USENIX 1995 Technical Conference Proceedings, p.14-14, January 16-20, 1995, New Orleans, Louisiana
	Trent Jaeger , Jochen Liedtke , Nayeem Islam, Operating system protection for fine-grained programs, Proceedings of the 7th conference on USENIX Security Symposium, 1998, p.11-11, January 26-29, 1998, San Antonio, Texas
	Avik Chaudhuri , Prasad Naldurg , Sriram Rajamani, A type system for data-flow integrity on windows vista, Proceedings of the third ACM SIGPLAN workshop on Programming languages and analysis for security, June 07-13, 2008, Tucson, AZ, USA
	Xukai Zou , Yogesh Karandikar , Elisa Bertino, A dynamic key management solution to access hierarchy, International Journal of Network Management, v.17 n.6, p.437-450, November 2007
	David F. Ferraiolo, An argument for the role-based access control model, Proceedings of the sixth ACM symposium on Access control models and technologies, p.142-143, May 2001, Chantilly, Virginia, United States
	Roger Oliver, Protection in a distributed document processing system, ACM SIGOPS Operating Systems Review, v.24 n.2, p.56-65, April 1990
	Jean Bacon , Richard Hayton , Sai Lai Lo , Ken Moody, Extensible access control for a hierarchy of servers, ACM SIGOPS Operating Systems Review, v.28 n.3, p.4-15, July 1994
	Ulf Leonhardt , Jeff Magee, Security Considerations for a Distributed LocationService, Journal of Network and Systems Management, v.6 n.1, p.51-70, March 01, 1998
	G. O'Shea, Redundant rights in protection systems, ACM SIGOPS Operating Systems Review, v.26 n.3, p.27-30, July 1992
	Marco de Vivo , Gabriela O. de Vivo , Luis Gonzalez, A brief essay on capabilities, ACM SIGPLAN Notices, v.30 n.7, p.29-36, July 1995
	Masoom Alam , Jean-Pierre Seifert , Qi Li , Xinwen Zhang, Usage control platformization via trustworthy SELinux, Proceedings of the 2008 ACM symposium on Information, computer and communications security, March 18-20, 2008, Tokyo, Japan
	Toby Murray , Duncan Grove, Non-delegatable authorities in capability systems, Journal of Computer Security, v.16 n.6, p.743-759, December 2008
	Clara Bertolissi , Maribel Fernández, A rewriting framework for the composition of access control policies, Proceedings of the 10th international ACM SIGPLAN conference on Principles and practice of declarative programming, July 15-17, 2008, Valencia, Spain
	Ines Margaria , Maddalena Zacchi, Access control in mobile ambient calculi: A comparative view, Theoretical Computer Science, v.398 n.1-3, p.183-202, May, 2008
	Anderson Santana de Oliveira , Eric Ke Wang , Claude Kirchner , Helene Kirchner, Weaving rewrite-based access control policies, Proceedings of the 2007 ACM workshop on Formal methods in security engineering, p.71-80, November 02-02, 2007, Fairfax, Virginia, USA
	Steve Barker, Access control by action control, Proceedings of the 13th ACM symposium on Access control models and technologies, June 11-13, 2008, Estes Park, CO, USA
	Serge Egelman , A.J. Bernheim Brush , Kori M. Inkpen, Family accounts: a new paradigm for user accounts within the home environment, Proceedings of the ACM 2008 conference on Computer supported cooperative work, November 08-12, 2008, San Diego, CA, USA
	Matthew Burnside , Angelos D. Keromytis, Asynchronous policy evaluation and enforcement, Proceedings of the 2nd ACM workshop on Computer security architectures, October 31-31, 2008, Alexandria, Virginia, USA
	Avik Chaudhuri , Prasad Naldurg , Sriram K. Rajamani , G. Ramalingam , Lakshmisubrahmanyam Velaga, EON: modeling and analyzing dynamic access control systems with logic programs, Proceedings of the 15th ACM conference on Computer and communications security, October 27-31, 2008, Alexandria, Virginia, USA
	Avik Chaudhuri , Prasad Naldurg , Sriram Rajamani, A type system for data-flow integrity on Windows Vista, ACM SIGPLAN Notices, v.43 n.12, December 2008
	Ram Krishnan , Ravi Sandhu , Jianwei Niu , William H. Winsborough, A conceptual framework for Group-Centric secure information sharing, Proceedings of the 4th International Symposium on Information, Computer, and Communications Security, March 10-12, 2009, Sydney, Australia
	Matthieu Lemerre , Vincent David , Guy Vidal-Naquet, A communication mechanism for resource isolation, Proceedings of the Second Workshop on Isolation and Integration in Embedded Systems, p.1-6, March 31-31, 2009, Nuremburg, Germany
	Steve Barker , Clara Bertolissi , Maribel Fernández, Action Control by Term Rewriting, Electronic Notes in Theoretical Computer Science (ENTCS), 234, p.19-36, March, 2009
	Jessica Rubart, Context-based access control, Proceedings of the 2005 symposia on Metainformatics, p.13-es, November 09-11, 2005, Esbjerg, Denmark
	Michele Bugliesi , Dario Colazzo , Silvia Crafa , Damiano Macedonio, A type system for discretionary access control†, Mathematical Structures in Computer Science, v.19 n.4, p.839-875, August 2009
	R. C. Summers, An overview of computer security, IBM Systems Journal, v.23 n.4, p.309-325, December1984
	C. Wood , E. B. Fernandez , R. C. Summers, Data base security: requirements, policies, and models, IBM Systems Journal, v.19 n.2, p.229-252, June 1980
	W. H. Murray, Security considerations for personal computers, IBM Systems Journal, v.23 n.3, p.297-304, September 1984
	R. Goodwin , S. F. Goh , F. Y. Wu, Instance-level access control for business-to-business electronic commerce, IBM Systems Journal, v.41 n.2, p.303-317, April 2002
	Jon A. Solworth, Robustly secure computer systems: a new security paradigm of system discontinuity, Proceedings of the 2007 Workshop on New Security Paradigms, September 18-21, 2007, New Hampshire
	Gunnar Stevens , Volker Wulf, Computer-supported access control, ACM Transactions on Computer-Human Interaction (TOCHI), v.16 n.3, p.1-26, September 2009
	Scott Alexander , Yuu-Heng Cheng , Brian Coan , Andrei Ghetie , Vikram Kaul , Bruce Siegell , Steve Bellovin , Nicholas F. Maxemchuk , Henning Schulzrinne , Stephen Schwab , Angelos Stavrou , Jonathan M. Smith, The dynamic community of interest and its realization in ZODIAC, IEEE Communications Magazine, v.47 n.10, p.40-47, October 2009

Collaborative Colleagues:

Butler W. Lampson: colleagues

Adobe Acrobat

QuickTime

Windows Media Player

Real Player