ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
The transfer of information and authority in a protection system
Full text PdfPdf (747 KB)
Source ACM Symposium on Operating Systems Principles archive
Proceedings of the seventh ACM symposium on Operating systems principles table of contents
Pacific Grove, California, United States
Pages: 45 - 54  
Year of Publication: 1979
ISBN:0-89791-009-5
Authors
Matt Bishop
Lawrence Snyder
Sponsors
SIGOPS: ACM Special Interest Group on Operating Systems
ACM: Association for Computing Machinery
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 7,   Downloads (12 Months): 28,   Citation Count: 10
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/800215.806569
What is a DOI?

ABSTRACT

In the context of a capability-based protection system, the term “transfer” is used (here) to refer to the situation where a user receives information when he does not initially have a direct “right” to it. Two transfer methods are identified: de jure transfer refers to the case when the user acquires the direct authority to read the information; de facto transfer refers to the case when the user acquires the information (usually in the form of a copy and with the assistance of others), without necessarily being able to get the direct authority to read the information. The Take-Grant Protection Model, which already models de jure transfers, is extended with four rewriting rules to model de facto transfer. The configurations under which de facto transfer can arise are characterized. Considerable motivational discussion is included.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
G. S. Graham and P. J. Denning. Protection - principles and practices. Proceedings of SJCC, pp.417-429, 1972.
 
2
Anita Katherine Jones, Protection in programmed systems., 1973
 
3
The Concise Oxford English Dictionary. Oxford University Press, Sixth Edition, 1976.
4
Butler W. Lampson, A note on the confinement problem, Communications of the ACM, v.16 n.10, p.613-615, Oct. 1973  [doi>10.1145/362375.362389]
5
Michael A. Harrison , Walter L. Ruzzo , Jeffrey D. Ullman, Protection in operating systems, Communications of the ACM, v.19 n.8, p.461-471, Aug. 1976  [doi>10.1145/360303.360333]
 
6
A. K. Jones, R. J. Lipton and L. Snyder. A linear time algorithm for deciding security. Proceedings of the 17th Annual Symposium on Foundations of Computer Science, 1976.
 
7
L. Snyder. Formal Models of Capability-Based Protection Systems. Yale Department of Computer Science Technical Report, #151, 1978.
 
8
R. W. Fabry, private communication.
 
9
W. L. Ruzzo, private communication.
 
10
Matt Bishop and Lawrence Snyder. The Transfer of Information and Authority in a Protection System. Yale Department of Computer Science Technical Report, #166, 1979.
11
Dorothy E. Denning, A lattice model of secure information flow, Communications of the ACM, v.19 n.5, p.236-243, May 1976  [doi>10.1145/360051.360056]
 
12
Anita K. Jones and Richard J. Lipton. The enforcement of security policies for computation. JCSS 17(1):35-55 (January, 1978).

CITED BY  10
Carl E. Landwehr, Formal Models for Computer Security, ACM Computing Surveys (CSUR), v.13 n.3, p.247-278, Sept. 1981
Matt Bishop, Hierarchical Take-Grant Protection systems, ACM SIGOPS Operating Systems Review, v.15 n.5, p.109-122, December 1981
Jonathon E. Tidswell , Trent Jaeger, An access control model for simplifying constraint expression, Proceedings of the 7th ACM conference on Computer and communications security, p.154-163, November 01-04, 2000, Athens, Greece
Trent Jaeger , Jonathon E. Tidswell, Practical safety in flexible access control models, ACM Transactions on Information and System Security (TISSEC), v.4 n.2, p.158-190, May 2001
James W. Gray, III, Report on the computer security foundations workshop VI, ACM SIGSAC Review, v.11 n.4, p.4-6, Oct. 1993
Wen-Pai Lu , Malur K. Sundareshan, A Model for Multilevel Security in Computer Networks, IEEE Transactions on Software Engineering, v.16 n.6, p.647-659, June 1990
Naizhen Qi , Michiharu Kudo , Jussi Myllymaki , Hamid Pirahesh, A function-based access control model for XML databases, Proceedings of the 14th ACM international conference on Information and knowledge management, October 31-November 05, 2005, Bremen, Germany
Prasad Naldurg , Stefan Schwoon , Sriram Rajamani , John Lambert, NETRA:: seeing through access control, Proceedings of the fourth ACM workshop on Formal methods in security, p.55-66, November 03-03, 2006, Alexandria, Virginia, USA
Philip Derrin , Kevin Elphinstone , Gerwin Klein , David Cock , Manuel M. T. Chakravarty, Running the manual: an approach to high-assurance microkernel development, Proceedings of the 2006 ACM SIGPLAN workshop on Haskell, September 17-17, 2006, Portland, Oregon, USA
Trent Jeager, Managing access control complexity using metrices, Proceedings of the sixth ACM symposium on Access control models and technologies, p.131-139, May 2001, Chantilly, Virginia, United States

INDEX TERMS

Primary Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Information flow controls

Additional Classification:
  D. Software
  D.4 OPERATING SYSTEMS
      D.4.6 Security and Protection
          Subjects: Authentication


General Terms:
Management, Security

Collaborative Colleagues:
Matt Bishop: colleagues
Lawrence Snyder: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player