This thesis examines the multilevel security problem of simultaneous processing of compartmented and collateral data at the Intelligence Data Handling Site, Forces Command Intelligence Group, Fort Bragg, North Carolina. Existing security controls are examined, and a list of software controls are discussed to reduce the risk of penetration, whether accidental or deliberate. Software controls are described in four major areas: access controls, input/output controls, residual controls, and audit trail controls. The security kernel is discussed as the heart of all software controls. A method of verifying the software is discussed and a procedure is explained for certifying the ASSIST system as possessing an acceptable security risk. Recommendations are described to reduce the risk of penetration and certify the system as secure through software controls.
Hinweis: Dieser Artikel kann nur an eine deutsche Lieferadresse ausgeliefert werden.
Hinweis: Dieser Artikel kann nur an eine deutsche Lieferadresse ausgeliefert werden.