Data Integrity Limitations in Hybrid Security Architectures

Abstract

We discuss a class of computer/network architectures that supports multilevel security and commercial applications, while utilizing primarily commercial-off-the-shelf (COTS) workstations, operating systems and hardware components. We show that a property of these architectures is that, while they are capable of supporting multilevel confidentiality policies, they do not generally support partially ordered integrity policies: specifically, these architectures do not support the maintenance of data that is higher in integrity than the integrity level of the COTS components, thus limiting their applicability to processing environments where the integrity of data is consistent with that of low-assurance software.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Dec 01, 2000
Accession Number
ADA385357

Entities

People

  • Cynthia E. Irvine
  • Timothy E. Levin

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Biomedical
  • Cyber
  • Weapons Technologies

DTIC Thesaurus Topics

  • Computer Programming
  • Computer Programs
  • Computer Science
  • Computers
  • Computing System Architectures
  • Engineering
  • Environment
  • Information Processing
  • Information Systems
  • Network Architecture
  • Operating Systems
  • Security
  • Spreadsheet Software
  • Test And Evaluation
  • Trojan Horse
  • User Interface

Fields of Study

  • Computer science

Readers

  • Database Systems and Applications
  • Government and Public Administration Law.