Accession Number:

ADA459287

Title:

Architecture-Based Refinements for Secure Computer Systems Design

Descriptive Note:

Corporate Author:

IDAHO UNIV MOSCOW CENTER FOR SECURE AND DEPENDABLE SYSTEMS

Personal Author(s):

Report Date:

2006-01-01

Pagination or Media Count:

13.0

Abstract:

The successful design and implementation of secure systems must occur from the beginning. A component that must process data at multiple security levels is very critical and must go through additional evaluation to ensure the processing is secure. It is common practice to isolate and separate the processing of data at different levels into different components. In this paper we present architecture-based refinement techniques for the design of multi-level secure systems. We discuss what security requirements must be satisfied through the refinement process, including when separation works and when it does not. The process oriented approach will lead to verified engineering techniques for secure systems, which should greatly reduce the cost of certification of those systems.

Subject Categories:

  • Computer Systems Management and Standards

Distribution Statement:

APPROVED FOR PUBLIC RELEASE