Statistical models of trust: TCBs vs. people

Proceedings. 1989 IEEE Symposium on Security and Privacy Pub Date : 1989-05-01 DOI:10.1109/SECPRI.1989.36274

Theodore M. P. Lee

引用次数: 13

Abstract

The processes of granting security clearances to people and accrediting trusted computer systems are compared, both informally and using preliminary mathematical models of risk probabilities. The risk models support the validity of two hypotheses that were previously merely conjectures: (1) in determining an acceptable accreditation range for a computer one need only consider the highest classification of data on it and the least-cleared person using it, (2) that under suitable conditions a cascade (combination) of two trusted systems can be trusted more than either individually. In particular, it is shown that a cascade of two (independently built) B2 systems is as good as one B3 system.<>

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

信任的统计模型:tcb vs.人

通过非正式和使用风险概率的初步数学模型，对授予人员安全许可和对可信计算机系统进行认证的过程进行了比较。风险模型支持两个假设的有效性，这两个假设以前仅仅是猜测:(1)在确定计算机的可接受认证范围时，人们只需要考虑计算机上数据的最高分类和使用它的最不清楚的人，(2)在适当的条件下，两个可信系统的级联(组合)可以比单独信任更可信。特别是，两个(独立建立的)B2系统的级联与一个B3系统的级联效果一样好

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

Proceedings. 1989 IEEE Symposium on Security and Privacy

自引率

0.00%

发文量

期刊最新文献

A secure identity-based capability system With microscope and tweezers: an analysis of the Internet virus of November 1988 Defending systems against viruses through cryptographic authentication A framework for expressing models of security policy A security policy for an A1 DBMS (a trusted subject)