A classification of interdomain actions
ACM SIGOPS Operating Systems Review
A new model of security for distributed systems
NSPW '96 Proceedings of the 1996 workshop on New security paradigms
Developing and using a “policy neutral” access control policy
NSPW '96 Proceedings of the 1996 workshop on New security paradigms
A lattice model of secure information flow
Communications of the ACM
Protection in operating systems
Communications of the ACM
Z: An Introduction to Formal Methods
Z: An Introduction to Formal Methods
Security Engineering of Lattice-Based Policies
CSFW '97 Proceedings of the 10th IEEE workshop on Computer Security Foundations
A Paradigm For User-Defined Security Policies
SRDS '95 Proceedings of the 14TH Symposium on Reliable Distributed Systems
SP '92 Proceedings of the 1992 IEEE Symposium on Security and Privacy
Providing policy control over object operations in a mach based system
SSYM'95 Proceedings of the 5th conference on USENIX UNIX Security Symposium - Volume 5
| Hi-index | 0.00 |
This paper discusses the implementation of security policies in multipolicy systems. Multipolicy systems are systems supporting a multitude of security policies, each policy governing the applications within its own and precisely defined security domain.The paper argues that within multipolicy systems, traditional approaches for implementing security policies such as security kernels are both too weak and too strong. In order to support this thesis, we will discuss architectural issues of the implementation of policy separation, policy persistency, total mediation and putting off-the-shelf applications under the control of security policies. Whenever our statements are illustrated by examples, these examples are taken from a case study we implemented for the OSF Distributed Computing Environment.