Conference Proceedings

The multipolicy paradigm for trusted systems

Proceedings New Security Paradigms Workshop (1993) Part F129673 19-32
DOI: 10.1145/283751.283768
19Citations
Citations of this article
13Readers
Mendeley users who have this article in their library.
Get full text

Abstract

This paper describes shortcomings in the current paradigm for multilevel secure (MLS) systems, summarizes requirements for an alternate paradigm, and describes the Multipolicy Paradigm. The Multipol-icy Paradigm is useful whenever there are multiple security goals such as confidentiality, privacy, availability, integrity, or weapons release control; whenever users with different values and traditions must share a common system; whenever a system is composed of separately-evaluated pieces, and whenever policies must adapt to changing circumstances. The paper suggests shifts in thinking about multilevel secure (MLS) systems, and raises important multipolicy issues: policy flexibility, policy conflict resolution, adding user security policies to commercial off-the-shelf (COTS) products, evaluating and certifying multiple policy systems, and passing sensitive data across policy boundaries.

Cite

CITATION STYLE

APA

Hosmer, H. H. (1993). The multipolicy paradigm for trusted systems. In Proceedings New Security Paradigms Workshop (Vol. Part F129673, pp. 19–32). Association for Computing Machinery. https://doi.org/10.1145/283751.283768

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free