Design Alternatives for Computer Network Security, Volume 1; Volume 13The Bureau, 1978 - 159 pages |
From inside the book
Results 1-5 of 25
Page v
... Separation of Data and Control . • 2.5 2.5.1 2.5.2 SECURITY MONITORING ISSUES . Collection of Audit Information A Network Security Center • 26 27 28 28 31 31 • 31 • Section TABLE OF CONTENTS Page 32 2.6 SECURITY ASSURANCE ISSUES V.
... Separation of Data and Control . • 2.5 2.5.1 2.5.2 SECURITY MONITORING ISSUES . Collection of Audit Information A Network Security Center • 26 27 28 28 31 31 • 31 • Section TABLE OF CONTENTS Page 32 2.6 SECURITY ASSURANCE ISSUES V.
Page 15
... audit data interpretation To provide an explicit " return path " for results To detect and avoid loops , ( e.g. , A calls B , who calls C , who calls A , etc. ) The " trail " alternative has the disadvantages of extra overhead and the ...
... audit data interpretation To provide an explicit " return path " for results To detect and avoid loops , ( e.g. , A calls B , who calls C , who calls A , etc. ) The " trail " alternative has the disadvantages of extra overhead and the ...
Page 31
... Audit Information Collecting appropriate audit information is , at best , an art such that the tools to be provided must be left as flexible and open ended as possible . This is particularly necessary in the network environment since ...
... Audit Information Collecting appropriate audit information is , at best , an art such that the tools to be provided must be left as flexible and open ended as possible . This is particularly necessary in the network environment since ...
Page 42
... ( audit data collected , user profile information to the HOST , etc. ) . A given Security Controller will have some domain of control based on the resources and user population for which it is responsible . This domain could range from ...
... ( audit data collected , user profile information to the HOST , etc. ) . A given Security Controller will have some domain of control based on the resources and user population for which it is responsible . This domain could range from ...
Page 44
... audit information indicated some suspicious behavior at the device . 3.1.2 Providing Network - Wide Authentication One of the critical networking problems is how to provide authentication of requestors across a number of server sites ...
... audit information indicated some suspicious behavior at the device . 3.1.2 Providing Network - Wide Authentication One of the critical networking problems is how to provide authentication of requestors across a number of server sites ...
Common terms and phrases
access authorization access control access control matrix access group additional addressing approach aspects audit information basic buffer capabilities checking clear text communications net communications network communications path connection creation considered control commands control information control messages crypto cryptographic devices data and control Data Encryption Standard data processing dialog distributed domain enciphered encipherment encryption devices ensure entities error control fail-secure functions gateway handled HOST computers HOST-level HOST's ICD's identification/authentication implicit initial interface involved issues matrix methods mini-HOST mode multiplexed N-th party accesses N-th party authentication network control programs Network Security Center node object one-time passwords operation pair passwords performed physical and procedural possible private key problems procedural controls processor profile information protection protocol Reference Monitor relay request requestor requirements resource SC-to-SC SC's scheme security control mechanism separate sequence numbers server structure structured programming terminal tradeoffs updates usage utilized
Popular passages
Page iv - In no case does such identification imply recommendation or endorsement by the National Bureau of Standards...