Design principles and guidelines for security

Loading...
Thumbnail Image
Authors
Levin, Timothy E.
Irvine, Cynthia E.
Benzel, Terry V.
Clark, Paul C.
Nguyen, Thuy D.
Bhaskara, Ganesha
Subjects
Computer systems.
Information storage and retrieval systems.
Advisors
Date of Issue
2007-11-21
Date
Publisher
Monterey, California. Naval Postgraduate School
Language
Abstract
This report provides a distillation, synthesis and organization of key principles for the construction of secure computing systems, and supports the analysis with examples where needed for clarity. Our conclusions reflect a broad range of previous related work including the landmark study by Saltzer and Schroeder and several subsequent reports. We found that some of the early design principles required re-examination due to, for example, advances in performance and extensibility as well as the effects of various new technologies. We focus on a concise summary articulation of the principles as they apply to the development of the most elemental components of a basic security system. The results are organized into several major categories: structure, logic and function, system lifecycle, and lessons learned.
Type
Technical Report
Description
Series/Report No
Department
Computer Science
Organization
National Science Foundation (U.S.)
Defense Advanced Research Projects Agency (DARPA)
Identifiers
NPS Report Number
NPS-CS-07-014
Sponsors
Funder
Grant number: CNS-0430566 and CNS-0430598.
Format
28 p.: ill.;28 cm.
Citation
Distribution Statement
Approved for public release; distribution is unlimited.
Rights