Home → Magazine Archive → April 1972 (Vol. 15, No. 4) → On the implementation of security measures in information... → Abstract

On the implementation of security measures in information systems

By R. W. Conway, W. L. Maxwell, H. L. Morgan

Communications of the ACM, Vol. 15 No. 4, Pages 211-220

The security of an information system may be represented by a model matrix whose elements are decision rules and whose row and column indices are users and data items respectively. A set of four functions is used to access this matrix at translation and execution time. Distinguishing between data dependent and data independent decision rules enables one to perform much of the checking of security only once at translation time rather than repeatedly at execution time. The model is used to explain security features of several existing systems, and serves as a framework for a proposal for general security system implementation within today's languages and operating systems.

The full text of this article is premium content


No entries found