Controlled access protection in the Telescript programming language

Download
Author
Marlett, Robert Lawrence
Date
1996-09Advisor
Irvine, Cynthia E.
Second Reader
Stevens, Louis D.
Metadata
Show full item recordAbstract
Research on the ability of the Telescript language and execution mechanism to enforce controlled access protection on mobile agents moving in and across distributed computer networks has not been published. Nor has General Magic, the creator of the language, conducted security testing on their product. This thesis investigates whether the mobile agents and execution mechanism proposed by General Magic in its Telescript(TM) language meet the Class C2 Controlled Access Protection criteria as promulgated in the Department of Defense Trusted Computer System Evaluation Criteria (TCSEC). This was done by conducting an analysis of the documentation provided by General Magic in their Telescript Development Kit (TDK) and Active Web Tools (AWT). The results of this thesis show that the mobile agents and execution mechanism of the Telescript(TM) language do not meet the criteria for TCSEC Class C2 Controlled Access Protection. In particular, the criteria for object reuse, system architecture, system integrity, security testing and security documentation are not met. However, discretionary access control (DAC) can be enforced using a user-defined security policy and the requirements for identification and authentication (I&A) and audit are satisfied.
Description
Computer Science
Collections
Related items
Showing items related by title, author, creator and subject.
-
Security concerns in accessing Naval e-Learning with personal mobile devices
Mitchell, Keystella R. (2014-12);The purpose of this study was to investigate the feasibility of using personal mobile devices for Naval e-Learning (NeL). Another objective was to find out which mobile device and which method of authentication offers the ... -
Using Local Optimality Criteria for Efficient Information Retrieval with Redundant Information Filters
Rowe, Neil C. (Monterey, California: Naval Postgraduate School., 1998-09);We consider information retrieval when the data, for instance multimedia, is coputationally expensive to fetch. Our approach uses "information filters" to considerably narrow the universe of possiblities before retrieval. ... -
Using local optimality criteria for efficient information retrieval with redundant information filters
Rowe, Neil C. (Monterey, California. Naval Postgraduate School, 1994-03); NPS-CS-94-004We consider information retrieval when the data, for instance multimedia, is computationally expensive to fetch. Our approach uses information filters to considerably narrow the universe of possibilities before retrieval. ...