Cryptographic Security Architecture

Design and Verification

  • Peter¬†Gutmann

Table of contents

  1. Front Matter
    Pages i-xviii
  2. Pages 127-166
  3. Pages 215-273
  4. Pages 305-308
  5. Pages 309-316
  6. Back Matter
    Pages 317-320

About this book

Introduction

A cryptographic security architecture is the collection of hardware and software that protects and controls the use of encryption keys and similar cryptovariables. It is the foundation for enforcing computer security policies and controls and preempting system misuse.

This book provides a comprehensive design for a portable, flexible high-security cryptographic architecture, with particular emphasis on incorporating rigorous security models and practices. "Cryptographic Security Architecture" unveils an alternative means of building a trustworthy system based on concepts from established software engineering principles and cognitive psychology. Its novel security-kernel design implements a reference monitor that controls access to security-relevant objects and attributes based on a configurable security policy.

Topics and features:

* Builds a concise architectural design that can be easily extended in the future

* Develops an application-specific security kernel that enforces a fully customizable, rule-based security policy

* Presents a new verification technique that allows verification from the high-level specification down to the running code

* Describes effective security assurance in random number generation, and the pitfalls associated therewith

* Examines the generation and protection of cryptovariables, as well as application of the architectural design to cryptographic hardware

The work provides an in-depth presentation of a flexible, platform-independent cryptographic security architecture suited to software, hardware, and hybrid implementations. Security design practitioners, professionals, researchers, and advanced students will find the work an essential resource.

Keywords

Crib Hardware Variable code computer computer security encryption security software engineering

Authors and affiliations

  • Peter¬†Gutmann
    • 1
  1. 1.Department of Computer ScienceUniversity of AucklandAucklandNew Zealand

Bibliographic information

  • DOI https://doi.org/10.1007/b97264
  • Copyright Information Springer-Verlag New York, Inc. 2004
  • Publisher Name Springer, New York, NY
  • eBook Packages Springer Book Archive
  • Print ISBN 978-0-387-95387-8
  • Online ISBN 978-0-387-21551-8
  • About this book