---

Home Security

NSA paper on computer security

By

Kragen posted to
BUGTRAQ:

“The Inevitability of Failure: The Flawed Assumption of Security
in Modern Computing Environments”, published by six NSA employees,
was published at the 21st National Information Systems Security
Conference in October, in Arlington, Virginia, USA. (See http://csrc.nist.gov/nissc/1998/
and http://csrc.nist.gov/nissc/1998/papers.html
for more on the conference.)

The paper is available in HTML at http://www.jya.com/paperF1.htm
and in PDF at http://csrc.nist.gov/nissc/1998/proceedings/paperF1.pdf

It discusses, among other things:

  • why mandatory security mechanisms are useful outside the
    context of classification levels, even on single-user systems;
  • trusted-path mechanisms, like the PASSCRED stuff recently
    implemented in Linux and NT’s Ctrl-Alt-Del login feature.

Get the Free Newsletter!

Subscribe to Developer Insider for top news, trends, & analysis

Must Read

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Our Brands

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.