Integrity controls for military and commercial applications

6 January 2003

conference paper
Published by Institute of Electrical and Electronics Engineers (IEEE)

p. 298-322
https://doi.org/10.1109/acsac.1988.113351

Abstract

Because it is generally not possible to prevent the destruction or alteration of data when objects are stored or transmitted outside the security perimeter of a TCB (trusted computer base), the emphasis is placed on detecting any illicit data, including the results of computer viruses and Trojan Horse programs, using cryptographic checksums and digital signature techniques. It is concluded that a mandatory integrity policy consisting of the Biba hierarchical integrity policy extended to include integrity categories and multilevel integrity-trusted subjects, plus a discretionary integrity policy that uses a digital signature mechanism incorporated in a file label to indicate who created or produced that file, can provide integrity controls very well-suited to the networking environment.

Keywords

This publication has 7 references indexed in Scilit:

Using mandatory integrity to enforce 'commercial' security
Published by Institute of Electrical and Electronics Engineers (IEEE) ,2003
Computer viruses: Theory and experiments
Published by Elsevier ,2002
A Comparison of Commercial and Military Computer Security Policies
Published by Institute of Electrical and Electronics Engineers (IEEE) ,1987
Electronic document authentication
IEEE Network, 1987
Reflections on trusting trust
Communications of the ACM, 1984
Mechanism Sufficiency Validation by Assignment
Published by Institute of Electrical and Electronics Engineers (IEEE) ,1981
A method for obtaining digital signatures and public-key cryptosystems
Communications of the ACM, 1978