A Cautionary Note Regarding the Data Integrity Capacity of Certain Secure Systems

Abstract

The need to provide standard commercial-grade productivity applications as the general purpose user interface to high-assurance data processing environments is compelling, and has resulted in proposals for several different types of "trusted" systems. We characterize some of these systems as a class of architecture. We discuss the general integrity property that systems can only be trusted to manage modifiable able data whose integrity is at or below that of their interface components. One effect of this property is that in terms of integrity these hybrid-security systems are only applicable to processing environments where the integrity of data is consistent with that of low-assurance software. Several examples are provided of hybrid-security systems subject to these limitations.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2002
Accession Number
ADA435460

Entities

People

  • Cynthia E. Irvine
  • Timothy E. Levin

Organizations

  • Naval Postgraduate School

Tags

Communities of Interest

  • Biomedical
  • C4I
  • Cyber
  • Ground and Sea Platforms
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Application Software
  • Compilers
  • Computer Program Reliability
  • Computer Programming
  • Computer Programs
  • Computers
  • Computing System Architectures
  • Cybersecurity
  • Database Management Systems
  • Databases
  • Graphical User Interface
  • Network Architecture
  • Operating Systems
  • Relational Database Management Systems
  • Spreadsheet Software
  • User Interface
  • Web Browsers

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Systems Analysis and Design