A Multilevel File System for High Assurance

Irvine, Cynthia E.

A Multilevel File System for High Assurance

Files

95paper_mls.pdf (204.33 KB)

Authors

Irvine, Cynthia E.

Date of Issue

1995-05-00

Publisher

Proceedings of the IEEE Symposium on Security and Privacy

Abstract

The designs of applications for multilevel systems cannot merely duplicate those of the untrusted world. When applications are built on a high assurance base they will be constrained by the underlying policy enforcement mechanism_ Consideration must be given to the creation and management of multilevel data structures by untrusted subjects_ Applications should be designed to rely upon the TCB s security policy enforcement services rather than build new access control services beyond the TCB perimeter The results of an analysis of the design of a general purpose le system developed to execute as an untrusted application on a high assurance TCB are presented. The design illustrates a number of solutions to problems resulting from a high assurance environment.

Type

Article

URI

https://hdl.handle.net/10945/7177

Department

Computer Science (CS)

Organization

Center for Cybersecurity and Cyber Operations (C3O)

Citation

Proceedings of the IEEE Symposium on Security and Privacy, Oakland, CA, pp. 78-87, May 1995

Distribution Statement

Approved for public release; distribution is unlimited.

Rights

This publication is a work of the U.S. Government as defined in Title 17, United States Code, Section 101. Copyright protection is not available for this work in the United States.

Collections

Publications

Full item page

Naval Postgraduate School

Dudley Knox Library