Architecture-Based Refinements for Secure Computer Systems Design

Abstract

The successful design and implementation of secure systems must occur from the beginning. A component that must process data at multiple security levels is very critical and must go through additional evaluation to ensure the processing is secure. It is common practice to isolate and separate the processing of data at different levels into different components. In this paper we present architecture-based refinement techniques for the design of multi-level secure systems. We discuss what security requirements must be satisfied through the refinement process, including when separation works and when it does not. The process oriented approach will lead to verified engineering techniques for secure systems, which should greatly reduce the cost of certification of those systems.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Jan 01, 2006
Accession Number
ADA459287

Entities

People

  • Jianlong Zhou
  • Jim Alves-foss

Organizations

  • University of Idaho

Tags

DTIC Thesaurus Topics

  • Abstracts
  • Classification
  • Clearances
  • Computers
  • Concrete
  • Connectors
  • Databases
  • Decomposition
  • Engineering
  • Feedback
  • Language
  • Reliability
  • Security
  • Software Design
  • Software Development
  • Systems Engineering
  • Verification

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Enterprise Information Systems Architecture and Joint Command Capability Interoperability Support.
  • Software Engineering