1. Abstract Notes on application-orientated access control
Abstract:
The protection qualities of discretionary access control systems realised by today's prevalent operating systems are based on an assessment of the trustworthiness of users. By starting a program a user transfers his trustworthiness to it, ie, there is the tacit assumption that the program's trustworthiness at least matches that of the user. However, malicious programs are a growing source of threat. They perform operations without the user's consent and often in contravention of his interests. To eliminate this danger we examine program-orientated protection strategies. We then present, firstly, a small enhancement to the operating system and, secondly, an addition to the operating system, which support both a user and an application with high security demands in the enforcement of authenticity and integrity even in the presence of malicious programs. 2.
Citations
| 9 | Access Control for Ad-hoc Collaboration – Balfanz - 2001 |
| 1 | Crash Course in X Windows Security’. GridLock 1(1998):1. http://www.hackphreak.org/gridlock/issues/ issue.1/xwin.html CERT Coordination Center – Bråthen - 1998 |
| 1 | Securing X Windows. UCRL-MA-121788 – Fisher - 1995 |
