Enigma Logic, Inc. SafeWord UNIX-Safe Version 3.1

Arnold, James L.; Carlton, Stephen F.

Enigma Logic, Inc. SafeWord UNIX-Safe Version 3.1

Active / Technical Report | Accession Number: ADA221811 |

Open PDF

Abstract:

SafeWord UNIX-Safe1 SafeWord has been evaluated by the National Computer Security Center NCSC. SafeWord is considered to be a security sub- system rather than a complete trusted computer system. Therefore, it was evaluated against a relevant subset of the requirements in the Department of Defense Trusted Computer System Evaluation Criteria, dated December 1985. Specifically, the subset in this evaluation included identification and authentication and audit. The NCSC evaluation team has determined that SafeWord is capable of applying these security features to any IBM PCAT2 running under the XENIX3 operating system. In addition to the standard XENIX login mechanism, SafeWord maintains user I and A by requiring each user to enter a user ID and then a valid response to the challenge subsequently issued by SafeWord. Audit records are generated and maintained for all login attempts. Each user is given two attempts to login before a disconnect occurs. The result of the two attempts, success or failure, is appropriately logged. These security mechanisms can be maintained only if the code that implements them is protected from unauthorized modification. SafeWord includes tamper testing logic which is capable of detecting unauthorized modification. However, in the XENIX environment, the file system should be configured such that only a user logged in with root privilege can modify the SafeWord program and its associated data files. kr

Author(s):

Arnold, James L. ; Carlton, Stephen F.

Author Organization(s):

NATIONAL COMPUTER SECURITY CENTER FORT GEORGE G MEADE MD

Descriptive Note:

Final evaluation rept.,

Supplementary Note:

DOI: 10.21236/ADA221811

Pagination:

0017

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:

Approved For Public Release

Distribution Statement:

Approved For Public Release; Distribution Is Unlimited.

RECORD

Collection: TR

Identifying Numbers

Report Number(s):

CSC-EPL-87/002

Monitor Series:

NCSC

Subject Terms

Joint Capability Areas:

JCA_8.2_Shape; JCA_8_Building Partnerships; JCA_8.2.4_Leverage Capacities and Capabilities of Security Establishments; JCA_4.3_Maintain; JCA_6.4.2_Protect Data and Networks; JCA_1_Force Support; JCA_3.2_Engagement; JCA_3_Force Application; JCA_5_Command and Control; JCA_6.4_Information Assurance; JCA_6_Net Centric; JCA_8.2.3_Build the Capabilities and Capacities of Partners and Institutions

Communities of Interest:

Materials and Manufacturing Processes

Descriptor(s):

*DATA PROCESSING SECURITY, DEPARTMENT OF DEFENSE, NATIONAL SECURITY, COMPUTERS, AUDITING, SECURITY, SYSTEMS ANALYSIS, RECORDS, COMPUTER FILES, DATA BASES, MODIFICATION

Field(s)/Group(s):

Computer Systems Management and Standards

Keyword(s):

SAFEWORD

Report Date:

1987 Jun 30