Some conundrums concerning separation of duty
- 1 January 1990
- conference paper
- Published by Institute of Electrical and Electronics Engineers (IEEE)
- p. 201-207
- https://doi.org/10.1109/risp.1990.63851
Abstract
An examination is made of questions concerning commercial computer security integrity policies. An example is given of a dynamic separation of duty policy which cannot be implemented by mechanisms based on TCSEC based mechanisms alone, yet occurs in the real commercial world and can be implemented efficiently in practice. A commercial computer security product in wide use for ensuring the integrity of financial transactions is presented. It is shown that it implements a well-defined and sensible integrity policy that includes separation of duty, yet fails to meet either the TCSEC or the D.D. Clark and D.R. Wilson (1987) rules.Keywords
This publication has 6 references indexed in Scilit:
- A 'new' security policy modelPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- Transaction control expressions for separation of dutiesPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- Using mandatory integrity to enforce 'commercial' securityPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- Implementing commercial data integrity with secure capabilitiesPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- Integrity controls for military and commercial applicationsPublished by Institute of Electrical and Electronics Engineers (IEEE) ,2003
- A Comparison of Commercial and Military Computer Security PoliciesPublished by Institute of Electrical and Electronics Engineers (IEEE) ,1987