An Analysis of Three Kernel-based Multilevel Security Architectures
NAVAL POSTGRADUATE SCHOOL MONTEREY CA DEPT OF COMPUTER SCIENCE
Pagination or Media Count:
Various system architectures have been proposed for highly robust enforcement of multilevel security MLS. This paper provides an analysis of the relative merits of three architectural types one based on a traditional separation kernel, another based on a security kernel, and a third based on a high-robustness separation kernel. We show that by taking advantage of commonly available hardware features, and incorporating security features required by the nascent Separation Kernel Protection Profile SKPP, the latter architecture may provide several aspects of security and assurance that are not achievable with the other two.
- Administration and Management
- Information Science
- Computer Programming and Software