Design Alternatives for Computer Network Security, Volume 1; Volume 13The Bureau, 1978 - 159 pages |
From inside the book
Results 1-5 of 18
Page 15
... objects ( HOST computers , files , etc. ) is basically the information indicated in a Lampson / Denning ( LAM - 69 ) three - 15 2 ACCESS REQUEST/AUTHORIZATION ISSUES 2 2 2 Distributed Versus Centralized Authentication Checking N-th ...
... objects ( HOST computers , files , etc. ) is basically the information indicated in a Lampson / Denning ( LAM - 69 ) three - 15 2 ACCESS REQUEST/AUTHORIZATION ISSUES 2 2 2 Distributed Versus Centralized Authentication Checking N-th ...
Page 16
... objects . Similarly , an object might have an access requirements profile ( e.g. , the list of requestors who have access to it and their privileges ) , so that an access request is authorized when the requestor's and object's profiles ...
... objects . Similarly , an object might have an access requirements profile ( e.g. , the list of requestors who have access to it and their privileges ) , so that an access request is authorized when the requestor's and object's profiles ...
Page 17
Gerald D. Cole, Dennis K. Branstad. User #i Subjects Object #j read Protected Objects capabilities of User #i on object #j Figure 2-1 . The Access Authorization Matrix 2.2.1 Access Authorization Design Principles Authorization and access ...
Gerald D. Cole, Dennis K. Branstad. User #i Subjects Object #j read Protected Objects capabilities of User #i on object #j Figure 2-1 . The Access Authorization Matrix 2.2.1 Access Authorization Design Principles Authorization and access ...
Page 18
... Object Versus Path Protection Protection can be provided to either the object itself and / or the path to the object . ( Note : The network aspects are almost entirely path - oriented protection ) . 2.2.2 Authorization Checking At Local ...
... Object Versus Path Protection Protection can be provided to either the object itself and / or the path to the object . ( Note : The network aspects are almost entirely path - oriented protection ) . 2.2.2 Authorization Checking At Local ...
Page 41
... SLAVE -- MUX SLAVE ICD ICD ICD 1 Figure 3-1 . The Levels Involved In a Secure Network NETWORK GATEWAY TO SECOND NETWORK Requestor Profile Block Subject Name Misc . Information D Object. 41 The Levels Involved in a Secure Network.
... SLAVE -- MUX SLAVE ICD ICD ICD 1 Figure 3-1 . The Levels Involved In a Secure Network NETWORK GATEWAY TO SECOND NETWORK Requestor Profile Block Subject Name Misc . Information D Object. 41 The Levels Involved in a Secure Network.
Common terms and phrases
access authorization access control access control matrix access group additional addressing approach aspects audit information basic buffer capabilities checking clear text communications net communications network communications path connection creation considered control commands control information control messages crypto cryptographic devices data and control Data Encryption Standard data processing dialog distributed domain enciphered encipherment encryption devices ensure entities error control fail-secure functions gateway handled HOST computers HOST-level HOST's ICD's identification/authentication implicit initial interface involved issues matrix methods mini-HOST mode multiplexed N-th party accesses N-th party authentication network control programs Network Security Center node object one-time passwords operation pair passwords performed physical and procedural possible private key problems procedural controls processor profile information protection protocol Reference Monitor relay request requestor requirements resource SC-to-SC SC's scheme security control mechanism separate sequence numbers server structure structured programming terminal tradeoffs updates usage utilized
Popular passages
Page iv - In no case does such identification imply recommendation or endorsement by the National Bureau of Standards...