Affiliation:
1. Purdue Univ., West Lafayette, IN
Abstract
This paper investigates mechanisms that guarantee secure information flow in a computer system. These mechanisms are examined within a mathematical framework suitable for formulating the requirements of secure information flow among security classes. The central component of the model is a lattice structure derived from the security classes and justified by the semantics of information flow. The lattice properties permit concise formulations of the security requirements of different existing systems and facilitate the construction of mechanisms that enforce security. The model provides a unifying view of all systems that restrict information flow, enables a classification of them according to security objectives, and suggests some new approaches. It also leads to the construction of automatic program certification mechanisms for verifying the secure flow of information through a program.
Publisher
Association for Computing Machinery (ACM)
Reference23 articles.
1. Denning D.E. Secure information flow in computer systems. Ph.D. Th. Purdue U. CSD TR 145 May 1975. Denning D.E. Secure information flow in computer systems. Ph.D. Th. Purdue U. CSD TR 145 May 1975.
Cited by
979 articles.
订阅此论文施引文献
订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献