Thu Mar 29 13:00:35 EDT 2007

very interesting paper on security

--

It is from our friends at the National Security Agency, who actu-
ally seem to do great work.  I need to read  this  paper,  but  I
have  no  doubt that it will be good.  The security papers always
are.


http://www.nsa.gov/selinux/papers/inevit-abs.cfm 

(note, cold fusion!)

FTA:

Abstract

Although  public  awareness of the need for security in computing
systems is growing rapidly, current efforts to  provide  security
are unlikely to succeed. Current security efforts suffer from the
flawed assumption that adequate security can be provided  in  ap-
plications  with  the  existing security mechanisms of mainstream
operating systems. In reality, the need for secure operating sys-
tems  is growing in today's computing environment due to substan-
tial increases in connectivity and data sharing. The goal of this
paper  is to motivate a renewed interest in secure operating sys-
tems so that future security efforts may build on a solid founda-
tion.  This paper identifies several secure operating system fea-
tures which are lacking in mainstream operating  systems,  argues
that  these  features are necessary to adequately protect general
application-space security mechanisms, and provides concrete  ex-
amples of how current security solutions are critically dependent
on these features.

The paper appears in the Proceedings of the 21st National  Infor-
mation  Systems Security Conference, pages 303-314, October 1998,
and is also available here in:


--
Powered by vee
Copyright © 2006-2010