Mechanism Sufficiency Validation by Assignment.

Abstract

This paper introduces a mathematical framework for evaluating the relationship between policies and mechanisms. An evaluation approach called the assignment technique is defined. This technique consists of establishing an assignment between the security classes of information established by policy constraints, and the protection domains, established by the properties of the mechanism. The assignment technique provides a theoretical foundation for assessing the sufficiency of an access control mechanism with respect to a well formed protection policy. Although this paper presents preliminary results of research, the proposed framework suggests a promising new approach for evaluating the protection mechanisms of existing and proposed systems. (Author)

Open PDF

Document Details

Document Type
Technical Report
Publication Date
May 01, 1981
Accession Number
ADA100149

Entities

People

  • Lawrence J. Shirley
  • Roger R. Schell

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • C4I
  • Cyber

DTIC Thesaurus Topics

  • California
  • Classification
  • Computer Access Control
  • Computer Science
  • Computers
  • Cybersecurity
  • Information Security
  • Military Research
  • Operating Systems
  • Relational Database Management Systems
  • Security
  • Validation

Fields of Study

  • Computer science

Readers

  • Operations Research
  • Systems Analysis and Design