Design Alternatives for Computer Network Security, Volume 1; Volume 13The Bureau, 1978 - 159 pages |
From inside the book
Results 1-5 of 46
Page 7
... considered part of the " network " ? In theory , one should answer this question with an unequivocal " yes " ( e.g. , the supracomputer notion of the quoted ESD report ) ; but in practice , one must often segment the problem into data ...
... considered part of the " network " ? In theory , one should answer this question with an unequivocal " yes " ( e.g. , the supracomputer notion of the quoted ESD report ) ; but in practice , one must often segment the problem into data ...
Page 13
... etc. must be carefully considered . Some indication should also be made that network access is being made via the secondary source of authorization approval . 2.1.4 N - th Party Authentication An additional aspect of 13 1.
... etc. must be carefully considered . Some indication should also be made that network access is being made via the secondary source of authorization approval . 2.1.4 N - th Party Authentication An additional aspect of 13 1.
Page 15
... considered under authori- zation issues in section 2.2.4 . 2.2 ACCESS REQUEST / AUTHORIZATION ISSUES Identification and authentication typically precede the request for access to some network resource , since knowledge of the requestor ...
... considered under authori- zation issues in section 2.2.4 . 2.2 ACCESS REQUEST / AUTHORIZATION ISSUES Identification and authentication typically precede the request for access to some network resource , since knowledge of the requestor ...
Page 16
... considered part of a more global security profile , which would also contain identifiers , etc. The term " profile " is used quite loosely in the literature , so we will not give it a rigid definition in this report . However , we will ...
... considered part of a more global security profile , which would also contain identifiers , etc. The term " profile " is used quite loosely in the literature , so we will not give it a rigid definition in this report . However , we will ...
Page 20
... considered further , and only the first method ( checks at the resource SC ) will be considered in subsequent sections . 2.2.3 Composite Authorizations Several entities are involved in almost every computer transaction , e.g. , a person ...
... considered further , and only the first method ( checks at the resource SC ) will be considered in subsequent sections . 2.2.3 Composite Authorizations Several entities are involved in almost every computer transaction , e.g. , a person ...
Common terms and phrases
access authorization access control access control matrix access group additional addressing approach aspects audit information basic buffer capabilities checking clear text communications net communications network communications path connection creation considered control commands control information control messages crypto cryptographic devices data and control Data Encryption Standard data processing dialog distributed domain enciphered encipherment encryption devices ensure entities error control fail-secure functions gateway handled HOST computers HOST-level HOST's ICD's identification/authentication implicit initial interface involved issues matrix methods mini-HOST mode multiplexed N-th party accesses N-th party authentication network control programs Network Security Center node object one-time passwords operation pair passwords performed physical and procedural possible private key problems procedural controls processor profile information protection protocol Reference Monitor relay request requestor requirements resource SC-to-SC SC's scheme security control mechanism separate sequence numbers server structure structured programming terminal tradeoffs updates usage utilized
Popular passages
Page iv - In no case does such identification imply recommendation or endorsement by the National Bureau of Standards...