Multics Security Kernel Certification Plan
HONEYWELL INFORMATION SYSTEMS INC MCLEAN VA FEDERAL SYSTEM OPERATIONS
Pagination or Media Count:
This report describes the methodology for formal certification approach of a security kernel implementation with respect to the top-level specifications of that kernel. An illustration of the proofs of correspondence between the kernel specifications and the desired multilevel properties the security model is included in the report. This methodology developed by Stanford Research Institute employs a formal hierarchical decomposition of the design, with formally stated specifications for each desired property. The report describes this methodology and its application to the task of developing the certifiable security kernels for Multics and the Secure Front-End Processor SFEP.
- Computer Hardware