Non-Discretionary Access Control for Decentralized Computing Systems

Karger, Paul Ashley

Non-Discretionary Access Control for Decentralized Computing Systems

Active / Technical Report | Accession Number: ADA040808 |

Open PDF

Abstract:

This thesis examines the issues relating to non-discretionary access controls for dencentralized computing systems. Decentralization changes the basic character of a computing system from a set of processes referencing a data base to a set of processes sending and receiving messages. Because messages must be acknowledged, operations that were read-only in a centralized system become read-write operations. As a result, the lattice model of non-discretionary access control, which mediates operations based on read versus read-write considerations does not allow direct transfer of algorithm from centralized systems. This thesis develops new mechanisms that comply with the lattice model and provide the necessary functions for effective decentralized computation. Secure protocols at several different levels are presented in the thesis.

Author(s):

Karger, Paul Ashley

Author Organization(s):

MASSACHUSETTS INST OF TECH CAMBRIDGE LAB FOR COMPUTER SCIENCE

Descriptive Note:

Masters' thesis

Pagination:

0143

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:

Approved For Public Release

Distribution Statement:

Approved For Public Release; Distribution Is Unlimited.

RECORD

Collection: TR

Identifying Numbers

Report Number(s):

MIT/LCS/TR-179, ESD-TR-77-142

Contract/Grant Number(s):

N00014-75-C-0661, ARPA ORDER-2095

Monitor Series:

TR-77-142, ESD

Subject Terms

Joint Capability Areas:

JCA_6_Net Centric; JCA_6.1.3_Switching and Routing; JCA_6.1.1_Wired Transmission; JCA_6.1_Information Transport; JCA_2_Battlespace Awareness; JCA_6.4.1_Secure Information Exchange; JCA_2.3_Processing and Exploitation; JCA_6.4.2_Protect Data and Networks; JCA_6.4_Information Assurance; JCA_2.1_Planning and Direction; JCA_4.7.2_Installation Services; JCA_4.7_Base and Installations Support; JCA_5_Command and Control; JCA_3.2_Engagement; JCA_3_Force Application; JCA_3.2.2_Non-Kinetic Means; JCA_7_Protection; JCA_7.2.1_Mitigate Lethal Effects; JCA_7.2_Mitigate; JCA_2.1.1_Define and Prioritize Requirements; JCA_5.3_Planning

Modernization Areas:

Cyber; Space

Communities of Interest:

Space

Descriptor(s):

*DATA PROCESSING SECURITY, *COMPUTERS, PACKETS, DATA PROCESSING TERMINALS, THESES, MEMORY DEVICES, ACCESS, DECENTRALIZATION, NETWORKS, COMPUTER COMMUNICATIONS, SEMANTICS

Field(s)/Group(s):

Computer Hardware, Computer Systems

Keyword(s):

ARPA COMPUTER NETWORK, COMPUTER NETWORKS, PROTOCOLS

Report Date:

1977 May 01