A security related architecture for a TNB supporting confidentiality and integrity based policies
This paper presents an architecture for a trusted networked system which traverses LAN/WAN topologies. The architecture provides for guard functionality located in special interface units to police the activities of associated end systems. This approach permits multi-level systems to be constructed from mixed multi-level and single level systems designed and evaluated to different assurance levels.
The guard units perform access control decisions designed to protect the confidentiality and integrity of user and system data across the entire TNB.
The architecture is layered, which simplifies the design task and is a first step towards separation of trusted functionality for assurance purposes.
KeywordsAccess Control Security Architecture Distribute Secure System Trust Computing Base Discretionary Access Control
Unable to display preview. Download preview PDF.