Design Alternatives for Computer Network Security, Volume 1; Volume 13The Bureau, 1978 - 159 pages |
From inside the book
Results 1-5 of 26
Page 15
... detect and avoid loops , ( e.g. , A calls B , who calls C , who calls A , etc. ) The " trail " alternative has the disadvantages of extra overhead and the open - ended length of the related data structure and storage requirements ...
... detect and avoid loops , ( e.g. , A calls B , who calls C , who calls A , etc. ) The " trail " alternative has the disadvantages of extra overhead and the open - ended length of the related data structure and storage requirements ...
Page 31
... detecting and aborting improper network use whenever possible , as well as being able to assess possible compromise when dis- covered after - the - fact . The second function requires global interpretation and control , and a Network ...
... detecting and aborting improper network use whenever possible , as well as being able to assess possible compromise when dis- covered after - the - fact . The second function requires global interpretation and control , and a Network ...
Page 32
... detected that require monitoring , and ( 2 ) for aperiodic pseudo penetration tests . The need for and implications of a Network Security Center will be left as an open issue since it is outside the scope of this investigation . 2.6 ...
... detected that require monitoring , and ( 2 ) for aperiodic pseudo penetration tests . The need for and implications of a Network Security Center will be left as an open issue since it is outside the scope of this investigation . 2.6 ...
Page 35
... detected and corrected . Redundancy must be applied , particularly in those areas in which failures would grant ... detect and limit the extent of any possible compromise due to failures . This pro- vides a second level of checking ...
... detected and corrected . Redundancy must be applied , particularly in those areas in which failures would grant ... detect and limit the extent of any possible compromise due to failures . This pro- vides a second level of checking ...
Page 74
... detect maliciously inserted bit changes ) . The use of sequence numbers introduces a new level of synchronization which must be considered . Several forms of usage control are required for recovery from errors such as the loss of a ...
... detect maliciously inserted bit changes ) . The use of sequence numbers introduces a new level of synchronization which must be considered . Several forms of usage control are required for recovery from errors such as the loss of a ...
Common terms and phrases
access authorization access control access control matrix access group additional addressing approach aspects audit information basic buffer capabilities checking clear text communications net communications network communications path connection creation considered control commands control information control messages crypto cryptographic devices data and control Data Encryption Standard data processing dialog distributed domain enciphered encipherment encryption devices ensure entities error control fail-secure functions gateway handled HOST computers HOST-level HOST's ICD's identification/authentication implicit initial interface involved issues matrix methods mini-HOST mode multiplexed N-th party accesses N-th party authentication network control programs Network Security Center node object one-time passwords operation pair passwords performed physical and procedural possible private key problems procedural controls processor profile information protection protocol Reference Monitor relay request requestor requirements resource SC-to-SC SC's scheme security control mechanism separate sequence numbers server structure structured programming terminal tradeoffs updates usage utilized
Popular passages
Page iv - In no case does such identification imply recommendation or endorsement by the National Bureau of Standards...