ABSTRACT

Design and Evaluation of INFOSEC Systems: The Computer Security Contribution to the Composition Discussion   [open pdf - 53KB]

"There has recently been a heightened awareness within Information Security (INFOSEC) organizations of the absolute need to approach systems security issues from a more global perspective than had previously been the case. A major consequence has been the investigation of 'the composition problem'; that is, how to bring a set of components together to form a system and then be able to determine the security attributes of the system from the analysis of the properties of the system's components...Recent developments in the computer security community have dealt with these issues from a slightly different, but relevant, perspective. The insights gained appear in the 'Interpretations' of the Trusted Computer Systems Evaluation Criteria (TCSEC); the Network Interpretation (TNI), and the DataBase Interpretation (TDI). This paper will examine the contributions made by this set of work, and then discuss the extension of the insights provided to the more general problem of INFOSEC systems."

Report Number:
C Technical Report 32-92
Author:
Publisher:
Date:
1992-06
Copyright:
Public Domain
Format:
pdf
Media Type:
application/pdf
URL:
Help with citations