Trusted Computer System Evaluation Criteria (TCSEC). Technical Report DOD 5200.28-STD, Department of Defense, December 1985. ("Orange Book").  Home/Search   Document Not in Database   Summary   Related Articles   Check

....of these fall into the realm of normal everyday Ada programming. In Ada, if you don t try to trick the compiler, it usually won t trick you. Figure 3: Single Address Space Architecture FIRM has a more difficult problem since it must demonstrate compliance with the so called Orange Book, TCSEC 85] for multiple level security (MLS) One of the requirements for B1 level MLS is that it must not be possible for application programs to view or tamper with the security enforcement mechanism in the DBMS or to read or update another application program s address space (see [TCSEC 85] section ....

.... Book, TCSEC 85] for multiple level security (MLS) One of the requirements for B1 level MLS is that it must not be possible for application programs to view or tamper with the security enforcement mechanism in the DBMS or to read or update another application program s address space (see [TCSEC 85] section 3.1.3.1.1) We understand this to imply an architecture with separate address spaces like that of Figure 2 on page 17. Our strategy for FIRM is to find better IPC techniques. We hope to construct a real time IPC mechanism through the use of shared memory regions and semaphores. We may ....

[Article contains additional citation context not shown here]

Trusted Computer System Evaluation Criteria, DoD 5200.28-STD (More commonly known as "The Orange Book"), National Computer Security Center, Alexandria VA, December 1985.

....[44] and [18] but most of them lack technical depth. However, there is one evaluation performed by the NSA, and the corresponding report has been issued by the National Computer Security Center (NCSC) 43] The evaluation is mostly based on the design of the system as defined in the Orange Book [65]. We have, on the other hand, studied the operational security of NT using penetration experiments. These may reveal vulnerabilities in the design, implementation as well as in the installation. Other penetration experiments have been carried out at our department, the most similar being a ....

....loaded on an NT system. As mentioned above, one of NT s primary goals was to add network capabilities to the base operating system. Another primary goal was to fulfil the C2 requirements. These two, however, cannot be achieved at the same time, since Trusted Computer System Evaluation Criteria [65] assume a standalone computer. In [43] NCSC expresses this very clearly. Still, this fact has sometimes been misunderstood, see for example [44] were the authors claims that even the networking part is C2 compliant. User mode Kernel mode Redirector User mode Kernel mode Server ....

Trusted Computer System Evaluation Criteria ("orange book"). National Computer Security Center, Department of Defense, No DOD 5200.28.STD, 1985.

....UNIX has always managed large parts of many system functions, such as networking etc, outside the kernel, in user mode processes. In the following of this section is presented a number of security mechanisms for UNIX and Windows NT. These mechanisms have primarily been taken from the TCSEC [25] with some modifications. The mechanisms represent different aspects of security and are meant to provide a broad coverage of the area. Differences and similarities between the security mechanisms of the two operating systems are discussed in a concluding subsection. 2.2 Identification 2.2.1 ....

....locally, or centraly on an network server, via the the flexible and configurable syslog facility [13] In addition, many modern UNIX systems supports a more comprehensive type of auditing known as C2 audit. This is so name because it fulfills the audit requirements for the TCSEC C2 security level [25]. 2.6 Networking 2.6.1 Windows NT The distributed parts of Windows NT rely heavily on Server Message Block (SMB) This is an application level protocol used by Microsoft for a number of thinks. Among those are authentication, RPC and the Common Internet File System protocol (CIFS) 8] 11] ....

Trusted Computer System Evaluation Criteria ("orange book"). National Computer Security Center, Department of Defense, No DOD 5200.28.STD, 1985.

....F 1 INTRODUCTION ECURITY has not traditionally been expressed quantitatively. Instead, the present position seems to be that security evaluation should be based on the classes of various Security Evaluation Criteria, such as e.g. 9] [18], 4] These classes primarily reflect static design properties and the development process of the system, but do not incorporate the interaction with the operational environment in a probabilistic way, similar to the way in which e.g. reliability is commonly expressed. Another approach is a ....

Trusted Computer System Evaluation Criteria ("Orange Book"), National Computer Security Center, Dept. of Defense, no. DoD 5200.28.STD, 1985.

....are called administrators or security officers because they have the authority to manipulate particular policies. Subjects also include devices, programs, and other computer resources. The following text draws heavily on the TCSEC (Trusted Computer System Evaluation Criteria) or Orange Book [29], as well as the ITSEC (International Trusted System Evaluation Criteria) document [22] produced by the international information security community, for examples. 9.1 Security Information Service The Security Information service is responsible for the establishment of security information for ....

DoD. Trusted Computer System Evaluation Criteria, ("Orange Book"), Department of Defense Standard 5200.28-STD, 1985.

No context found.

Trusted Computer System Evaluation Criteria (TCSEC). Technical Report DOD 5200.28-STD, Department of Defense, December 1985. ("Orange Book").

No context found.

DOD 5200.28-STD, Department of Defense Trusted Computer System Evaluation Criteria (TCSEC) ("The Orange Book"), National Computer Security Center, December 1985.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC