Asymmetric Isolation

San Diego California December 09-December 13

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/CSAC.1996.569668

12th Annual Computer Security Applica ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by J.A. Davidson

	ASCII Text	x
	J.A. Davidson, "Asymmetric Isolation," Computer Security Applications Conference, Annual, pp. 44, 12th Annual Computer Security Applications Conference (ACSAC '96), 1996.

	BibTex	x
	@article{ 10.1109/CSAC.1996.569668, author = {J.A. Davidson}, title = {Asymmetric Isolation}, journal ={Computer Security Applications Conference, Annual}, volume = {0}, year = {1996}, issn = {1063-9527}, pages = {44}, doi = {http://doi.ieeecomputersociety.org/10.1109/CSAC.1996.569668}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Computer Security Applications Conference, Annual TI - Asymmetric Isolation SN - 1063-9527 SP EP A1 - J.A. Davidson, PY - 1996 KW - security of data; asymmetric isolation; unidirectional security; risk-free multi-level security; absolute security rule enforcement; security violations; multi-level communication handshaking; downgrading; multiple single-level nodes; unidirectional links; hardware-enforced security; performance; cost; legacy systems; mandatory access control VL - 0 JA - Computer Security Applications Conference, Annual ER -

J.A. Davidson, Norex Co., San Diego, CA, USA

Examines a surprisingly simple application of unidirectional security that supports essentially risk-free MLS (multi-level security). It is an unusual environment because security rules can be absolutely enforced. Not only security violations, but also multi-level communication handshaking and most downgrading is not simply disallowed, but prevented. Experiments conducted using hardware multiple single-level nodes interconnected by unidirectional links show how this environment can be a practical alternative to software-enforced security. When we can adapt to this environment, the benefits include near-absolute strength, high performance and low cost. It seems particularly applicable to legacy systems because it is almost independent of pre-existing hardware and software.

Index Terms:

security of data; asymmetric isolation; unidirectional security; risk-free multi-level security; absolute security rule enforcement; security violations; multi-level communication handshaking; downgrading; multiple single-level nodes; unidirectional links; hardware-enforced security; performance; cost; legacy systems; mandatory access control

Citation:

J.A. Davidson, "Asymmetric Isolation," acsac, pp.44, 12th Annual Computer Security Applications Conference (ACSAC '96), 1996

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.