Minimizing the Naming Facilities Requiring Protection in a Computing Utility

Abstract

This thesis examines the various mechanisms for naming the information objects stored in a general-purpose computing utility, and isolates a basic set of naming facilities that must be protected to assure complete control over user interaction and that allow desired interactions among users to occur in a natural way. Minimizing the protected naming facilities consistent with the functional objective of controlled, but natural, user interaction contributes to defining a security kernal for a general-purpose computing utility. The security kernel is that complex of programs that must be correct if control on user interaction is to be assured. The Multics system is used as a test case, and its segment naming mechanisms are redesigned to reduce the part that must be protected as part of the supervisor. To show that this smaller protected naming facility can still support the complete functionality of Multics, a test implementation of the design is performed. The new design is shown to have a significant impact on the size and complexity of the Multics supervisor.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Sep 01, 1975
Accession Number
ADA031909

Entities

People

  • Richard G. Bratt

Organizations

  • Honeywell International, Inc.

Tags

Communities of Interest

  • C4I

DTIC Thesaurus Topics

  • Air Force
  • Bibliographies
  • Compilers
  • Computer Access Control
  • Computer Programming
  • Computer Programs
  • Computers
  • Directories
  • Engineering
  • Governments
  • Information Exchange
  • Information Systems
  • Instructions
  • Object Code
  • Software Development
  • Specifications
  • Translations

Readers

  • Computer Science.
  • Software Engineering.
  • Systems Analysis and Design