An analysis of three kernel-based multilevel security architectures
Irvine, Cynthia E.
Nguyen, Thuy D.
MetadataShow full item record
Various system architectures have been proposed for highly robust enforcement of multilevel security (MLS). This paper provides an analysis of the relative merits of three architectural types -- one based on a traditional separation kernel, another based on a security kernel, and a third based on a high-robustness separation kernel. We show that by taking advantage of commonly available hardware features, and incorporating security features required by the nascent Separation Kernel Protection Profile (SKPP), the latter architecture may provide several aspects of security and assurance that are not achievable with the other two.
NPS Report NumberNPS-CS-06-001
Showing items related by title, author, creator and subject.
Levin, Timothy, E.; Irvine, Cynthia E.; Weissman, Clark; Nguyen, Thuy D. (International Common Criteria Conference (ICCC), Rome, Italy, September 2007., 2007-11-01);Various system architectures have been proposed for high assurance enforcement of multilevel security. This paper provides an analysis of the relative merits of three architectural types, one based on a security kernel, ...
Smith, Kevin R. (Monterey, California. Naval Postgraduate School, 2002-03);Security engineering requires a combination of features and assurance to provide confidence that security policy is correctly enforced. Rigorous engineering principles are applicable across a broad range of systems. The ...
Chiang, Ken H. (Monterey, California. Naval Postgraduate School, 2006-09);Control of access to information based on temporal attributes has many potential applications. Examples include student user accounts set to expire upon graduation; files marked as time-sensitive so that their contents ...