Design Alternatives for Computer Network Security, Volume 1; Volume 13The Bureau, 1978 - 159 pages |
From inside the book
Results 1-5 of 19
Page 15
... sequence . The advantages of this scheme are : To simplify audit data interpretation To provide an explicit " return path " for results To detect and avoid loops , ( e.g. , A calls B , who calls C , who calls A , etc. ) The " trail ...
... sequence . The advantages of this scheme are : To simplify audit data interpretation To provide an explicit " return path " for results To detect and avoid loops , ( e.g. , A calls B , who calls C , who calls A , etc. ) The " trail ...
Page 16
... sequence . 1. Access authorization design principles 2 . 3 . Authorization checking at local and remote nodes Component authorizations 4. N - th party authorizations 5. Checking required to access the authorization mechanism . User #i ...
... sequence . 1. Access authorization design principles 2 . 3 . Authorization checking at local and remote nodes Component authorizations 4. N - th party authorizations 5. Checking required to access the authorization mechanism . User #i ...
Page 21
... sequence of entities ( WEI - 69 ) , but a further step - by - step authorization ' check is also necessary to ensure that only the proper entity ( or entities ) are the ultimate recipients of the information , e.g. , one entity may be ...
... sequence of entities ( WEI - 69 ) , but a further step - by - step authorization ' check is also necessary to ensure that only the proper entity ( or entities ) are the ultimate recipients of the information , e.g. , one entity may be ...
Page 24
... sequence establishes a user - to - process ( or process - to - process ) communications path which has end - to - end protection and a defined set of capabilities . Three general areas will be considered relative to the creation of ...
... sequence establishes a user - to - process ( or process - to - process ) communications path which has end - to - end protection and a defined set of capabilities . Three general areas will be considered relative to the creation of ...
Page 63
... sequence numbers are utilized as protection against the " record and play - back " of connection establish- ing messages ( analogous to Baran's Pre - Filtering Key ( BAR - 64 ) ) , then an error can occur if these sequence numbers get ...
... sequence numbers are utilized as protection against the " record and play - back " of connection establish- ing messages ( analogous to Baran's Pre - Filtering Key ( BAR - 64 ) ) , then an error can occur if these sequence numbers get ...
Common terms and phrases
access authorization access control access control matrix access group additional addressing approach aspects audit information basic buffer capabilities checking clear text communications net communications network communications path connection creation considered control commands control information control messages crypto cryptographic devices data and control Data Encryption Standard data processing dialog distributed domain enciphered encipherment encryption devices ensure entities error control fail-secure functions gateway handled HOST computers HOST-level HOST's ICD's identification/authentication implicit initial interface involved issues matrix methods mini-HOST mode multiplexed N-th party accesses N-th party authentication network control programs Network Security Center node object one-time passwords operation pair passwords performed physical and procedural possible private key problems procedural controls processor profile information protection protocol Reference Monitor relay request requestor requirements resource SC-to-SC SC's scheme security control mechanism separate sequence numbers server structure structured programming terminal tradeoffs updates usage utilized
Popular passages
Page iv - In no case does such identification imply recommendation or endorsement by the National Bureau of Standards...