Correctness in access control

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

Correctness in access control

Full text

Pdf (480 KB)

Source

ACM Annual Conference/Annual Meeting archive
Proceedings of the annual conference table of contents

Atlanta, Georgia, United States

Pages: 236 - 241

Year of Publication: 1973

Author

Gerald J. Popek

Sponsor

ACM: Association for Computing Machinery

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 3, Downloads (12 Months): 11, Citation Count: 3

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Request Permissions Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/800192.805711 What is a DOI?

ABSTRACT

A number of approaches have been developed to modularize parts of multiuser computer systems so that access to each part can be controlled. The devices of rings and capabilities are two examples. However, today's systems are notably incomplete and subject to defeat by determined and clever users. A point of view is presented here which allows proving that a logical design of an access control system is correct relative to a designer-specified set of criteria. Implementation questions are also discussed.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	R. W. Conway , W. L. Maxwell , H. L. Morgan, On the implementation of security measures in information systems, Communications of the ACM, v.15 n.4, p.211-220, April 1972 [doi>10.1145/361284.361287]
	2	Bernard Elspas , Karl N. Levitt , Richard J. Waldinger , Abraham Waksman, An Assessment of Techniques for Proving Program Correctness, ACM Computing Surveys (CSUR), v.4 n.2, p.97-147, June 1972 [doi>10.1145/356599.356602]
	3	Friedman, T., "The Authorization Problem in Shared Files," IBM Systems Journal 9, 4 (1970), pp. 258-280.
	4	Graham, G. S., and P. J. Denning "Protection—Principles and Practice," AFIPS Conf. Proc. 40 (SJCC 1972), pp. 417-429.
	5	Robert M. Graham, Protection in an information processing utility, Communications of the ACM, v.11 n.5, p.365-369, May 1968 [doi>10.1145/363095.363146]
	6	Lance J. Hoffman, Computers and Privacy: A Survey, ACM Computing Surveys (CSUR), v.1 n.2, p.85-103, June 1969 [doi>10.1145/356546.356548]
	7	Hoffman, L. F., "The Formulary Model for Flexible Privacy and Access Controls," AFIPS Conf. Proc. 39 (FJCC 1971), pp. 587-601.
	8	Lampson, B. W., "Dynamic Protection Structures," AFIPS Conf. Proc. 35 (FJCC 1969), pp. 27-38.
	9	Lampson, B. W., "Protection," Proc. 5th Princeton Conf. on Information Sciences and Systems (March 1971), pp. 437-443.
	10	Schell, R. (Head of Computer Security Branch, USAF/ESD), private communication, July 1972.
	11	Computer Security Technology Planning Study, ESD-TR-73-51, USAF Hanscom Field, October 1972.

CITED BY 3

	Michael A. Harrison , Walter L. Ruzzo , Jeffrey D. Ullman, Protection in operating systems, Communications of the ACM, v.19 n.8, p.461-471, Aug. 1976
	Michael A. Harrison , Walter L. Ruzzo , Jeffrey D. Ullman, On protection in operating systems, ACM SIGOPS Operating Systems Review, v.9 n.5, p.14-24, November 1975
	E. B. Fernández , R. C. Summers , C. D. Coleman, An authorization model for a shared data base, Proceedings of the 1975 ACM SIGMOD international conference on Management of data, May 14-16, 1975, San Jose, California