Enigma Logic, Inc. SafeWord UNIX-Safe Version 3.1
Abstract
SafeWord UNIX-Safe(1) (SafeWord) has been evaluated by the National Computer Security Center (NCSC). SafeWord is considered to be a security sub- system rather than a complete trusted computer system. Therefore, it was evaluated against a relevant subset of the requirements in the Department of Defense Trusted Computer System Evaluation Criteria, dated December 1985. Specifically, the subset in this evaluation included identification and authentication and audit. The NCSC evaluation team has determined that SafeWord is capable of applying these security features to any IBM PC/AT(2) running under the XENIX(3) operating system. In addition to the standard XENIX login mechanism, SafeWord maintains user I and A by requiring each user to enter a user ID and then a valid response to the challenge subsequently issued by SafeWord. Audit records are generated and maintained for all login attempts. Each user is given two attempts to login before a disconnect occurs. The result of the two attempts, success or failure, is appropriately logged. These security mechanisms can be maintained only if the code that implements them is protected from unauthorized modification. SafeWord includes tamper testing logic which is capable of detecting unauthorized modification. However, in the XENIX environment, the file system should be configured such that only a user logged in with root privilege can modify the SafeWord program and it's associated data files. (kr)
Document Details
- Document Type
- Technical Report
- Publication Date
- Jun 30, 1987
- Accession Number
- ADA221811
Entities
People
- James L. Arnold
- Stephen F. Carlton