Security Analysis and !Enhancements of Computer Operati Ng Systems

Security Analysis and !Enhancements of Computer Operati Ng Systems

If you have issues viewing or accessing this file contact us at NCJRS.gov. U.S. DEPARTMENT OF COMMERCE " 1="""""--~-""""'~":""""~"- "'''"n'''''''~ ,-.-"'- ''''''''=~'''-='1 National Technical Information Service 1 {,t,ll, 1:"1 ~ d<:: .... !" '1,~, *"'~~ T:"'~~ ;t'il .,-'po, r" ~ ~.",.. ,-! ~ ,f;..-:; ,'I • "rt, "',. ," ,... :.... l\ ~: , ... 1(" f.,.; I ~!~~r~j ~j ,,~~., (.;", -:~;, t,l" b , • .: : .. ': :',.:1 [ PB-257 087 I p;=a!ilO'tt.at#.~~~:,"'.=c.=~~~=-,.:.~~· [\ ~ Security Analysis and !Enhancements of Computer Operati ng Systems California University ~-.. '-~--' . ! 'NcJRS 1 ~~J\R 3 0 ~9ri Prepared for National Bureau of Standards, Washington, D C Inst for Computer Sciences and Technology Apr 76 ! \) o j 257 '= PB IB3m~rrr'. ~~JLl1mlE.~• . ' 0 FRO:,1 NATIONAL TeCHNICAL ,INFORMATION ~~WiCE, Product Uablllty Insurance: Assellment of Related i for t~~ ASS, estine,nt Df 'O~8an Outfalls .' " Probfeml3.'nd ISlues.Steff Study liJ) ADP::t')235,14(PAT 34 P PC$4.00/MF$3.00 i;.,:::,;"PB-252 2t14/PAT 181 P PC$9.50/MF$3.00~ 'Gul~~lInes fOr Documentation of Computer Pro- ~,. EvalUation of Home Solar Heating System granls and Automated Data Systems " UCRL-51 711t~AT 154 P PC$6.75/MF$3.00 PB-i~50 867/PAT 54 P PC$4.50/ME=$3;OO :~ny~g$ ~&lld Developing Noise Exposure C~>ntours for General II , ,. AVJation Airp,prts ,,'NOlif Abatement for Stationary' Sources In Japan ADA-D23 429/PAT205 p', PC$7.75/MF$3.00 PB-!~50 586/PAT 116 pc PC$5.50/MF$3.00 of COtrFifU Cooling Tower Environment, 1974. Proceedlngsfjof (,' U.S\\ Coal Resourcei and RQsentes . ' c a Sympollum Held at the UWverslty of Maryland PB-~52 752/P. AT. 16 p PC$3.50/MF$3.00. " ~~@M~ Adult Education Center on 'Mar. W, 1974 II ""= ..... CONF-140302/PAT 648 p PC$13.60/MF$3.00 Structured Programming Series. Vol. XI. Estil'naHg ,Software Project Resource Requirements >' . ..'C Biological Servlcei Program. Fiscal Year 1975 ADA-D16 416/PAT 70 cp PC$4.50/MF$3.00 .' P6-251 738/PAT 52 P f>C$4.50/MF$3.00 " " II of a· Singh! Family· Residence Solar An Ailas ,of Radlallon Histopathology Assess,~ent' d TIOw26-676/PAi 234 p PC$7.60/MF$3.00 Heating System In a Suburban Development Salting PB-246 141JPAT 244 P PC$8.0Q/MF$3.00 . r:.lderal Funding of Civilian (F,tesearch 8ndDevelop­ Q mint. Vol. 1. Summary Technical and, Economic Study of an Un~erground PB-251 266/PAT 61 p PC$4.5Q/MF$3.00 \) D Mining, RubbJlzatlo"""nd In "Situ Retorting System for Deep Oil Shale Deposits. Phase I Report Federal Funding Qf Civilian Research arid Develop- 0 PB-2ij9 3441 PAT 223p PC$7.75/MF$3.0Q Ment.Vol. 2:. Case Studies' "" " , , PB-251 683FPAT 336 P PC$10.00/Mr:$3.00 A Prelimil1aryForecast of ~nergy Consumption " Handbook on Aerosols ,Through 1985 TID-26-600/PAT 141 P PC$6.00/MF$3.00 pa..251 445/PAi 69 p PC$4.50/MF$3.00 , . a .' '1-10'W TO ORDER or your order 'Will be, manually flUed,.jr.t- "You Ir~ aisoplace your order by tele­ !~" t ", suring a delay. You can opt for airf!,Ulilphone or TELEX. The order desk number amvery for a $2.00 charge per itemP-lust is (703) "'557·46-50 and the TELEX nU'mber che!llc the Airmail Service box. If you're is 89·9405. When you indicate the method of pay- reatly pressed 1,01' time, call the NTIS Rush Whenever a foreian s~les price is ti0T Mento p1ea~ note if apun:hase order is not Order Service:; (703) 557-4700. For a specified in the !istinls. al~ foreilfl buyers accomJ:lllnied1 by payment, you will be ~illed $10.00 charge p~t item. your order will he Jnust add the folJowiq wrces to each or- ~an addltlon $$.00 ship an(l bill charge. And airmailed within 48 hoUrs. Or, you can ~r: $2.50 for tach paper COPY. ~i.5().·for please include the card expiration date :;vhen pick up your onter in the Washington In- tach microfiche; and SIO.OO £or ~ Pub- I!usina American ExpresS. (orm,ltioo Cerrter " Bookstore or at ouro lUbed.Search. " .' Normal delivery time takes three to five Sprinafield OperatiOftS. Center within 2<4 Thank you for your interest in NTIS. We ~ :~~:}~:::~::_:~n~~:~:~~_::~ ~~·::~~:~~~ .lI 'H__ __ ff ' _______ a q METHOD O~PA YMENT D ,""' o Charge my NTIS£ieposit accountno. ______-...,.._ SNAMEc __~ __~ ________________------- ___ ----- tl Purcha~e order no._""--_"..-___..__------- o Chclekenclosed for $ __---.,,----------.,.. ~.~. ----~----------------~--------.--~~------- o (.hargclo my American Express Card account number o ClTY. "STAT£, ZlP__ · -'--.-----';.,--------7i!2l1i:!'-' 01, I") II" II II lIt II 11 Card expiration l,Iate _______---:...---- " . Sijna1ure_....... ________------ " hem Number Paper" Copy ,M""evfiche" Unit {Price- o Airmail Service .. ,requested ~(PC) .'(MF) Clip and (Ollit to! H •• o (; 0. Q o· o Q 1 I ~ 1 ! i '8257087 I ,,) ( I U.S. OEPT. 01'" r.;OMM. l. PUBLICATION OR REPORT NO. 2. Govlt Acces\;ion 3. Recipient'.s Accessioll No. ! BIGLIOGRAP~lIC DATA No. ,! , ~BSIR... 76"'1041 ~ ij SHEET J It 4. TITLE AND SUBTlTLE S. Publication Date !l \\ ;j ,I" 1 I ) f..--!.A~'O:ril 12Z§ ~ t Secur,ity AnalysiS & Enhancements 6. Performing Orgariizl1ti\1n Code r ,I of dJmputer Operating Systems ! ii 7. AUTHOR(S) The RISOS P~Qj oct ., S. P~rIotming Orgaa. Report No. ,~; I La~rence Livermore Laooratorv (~; 9. PERFORMING ORGANIZATION NAME AND ADDRESS 10. Project/Task/Work Unit No. The RISOS Project 640.1112 11. Conml¢t/Grl1l1t No. \ Lawrence Livermore Laboratory '-'I Livermore, California 94550 12. Sponlloring Ot&a~h:ation Name and Complete Address (Street, City, State, ZIP) 13. Type"of Report /1( Peciod Covered ~ationa1 Bureau of Standards :, (, Department of Commerce Final "7/74-12/7:5 ,.; ~, liashington~ D.C. 20234 14. Sponsoring Agency G<fde is. SUPPu'~MENTARY NOTES I-____...... ___ ~ __~ ___~ _____._._'___"..;..;.. .... ·'.... ·~~l= _____.. -, __~~~. ,-" -- "--';;;.lI~.~. -~"""'''''''''''''''1'' 16. ABSTRACT (A 20(]...word ok' less factual BUmmDk'Y of mOllt sit1;nificant information. If docunwnt iJl¢ludes a si/1nificF.l(.il biblioSt'sphy Of litE::rsllqe survey. mention it here.) () The p1.'otection of computer resources. data of value, and indi'triclual privacy has mo~~vated a conce:rn for security of EDP. installations, especiaJl.1y of the operating systems. In this report , three commercial operating systems are analyzed and security enhancements suggested .'':, Because of the similarity of operating systems and their security proble.nm~ specific security flaws are formally classiHed accor:ding to a taxonomy developed here. This classification leads to a clearer understanding of «security flaws and aids in analyzing new systems.. o The discussions Gof security flaws and the security enhancel.nents " offer a starting reference for planning a securityinvesti~ation of an EDP installation's operating system. 17. liEY WORDS (six to twelve enfrHls; a(phab4tical order; capitall~e oMy the li'tsl I"Uer of the first key wotd Unless s proper name; separated by semicolons) " BBN... TENEX; IBM OS/360; operating system security; ~.~cur::lty flaws; software security; taxonomy of integrity flaws; UNlVAC 1100 Series OS lB. AVAILABILITY ~Unlimited 19. SECU.RIT~/fLASS '''''1~11. NO. OF PAGES (THIS REPORT) l o For OffiCial Distribution. Do Not Release to NTIS f) UNCL ASSIFll?:D . o Order From Sup. of Doc::., U,S. Government Printing Office 20. SECURITY ((j.ASS Washington. D.C. 20402, S.,p Cat. No. C13 . .. (THIS PAGE) .lKJ O;der From. NatiOl1;>.! Tec::.:hnic::rtJ Information Servi~e (NTIS) Springfield, Yirginianlil UNCLASSIFIED a I USCOMM-DC o 2~042.P74 Ii o & t o o If G II 1" 1 d . !i a ! i I ~,f I NBSIR 76·1041 SECURITY ANALYSIS AND ENHANCI;:MENTS OF COMPUTER OPERATING.,> SYSTEMS R. P. Abbott J. S. Chin J. E. DonneJley W. L. Konigsford S. Tckubo I( D. A. Webb jr The RISOS PJQject . Lawrence LIvermore Laboratory Livermore, California 94550 )) t t:' T. A. Linden, Editor ,7 I~~titute for ~omputer Sciences and Tech~OI09Y N~~al Bureau of .Standards 'I Was'hmgJon, D. C. 20234 o April 1976 Final Report i) " o o o o U.s. DEPARTMENT OF COMMERCE, Elliot L. Rief"ardson, Secretary ~). Jam~4'A~"B8ker. I'll. Under Secretary l'i .' Dr. Betsv Aocker-Jotmson. A,'ssistantSecretary faT Science and Technology " "';r I> o '.!.> NATIONAL BUREAU OF STANDARDS~Eme8t Ambler. Acting Director". .. ... 6 if .\\ /J (\ '"~ ____ ~':"' __,_~~""'_~v_~~._._of"l-""--""'_< _____':"~~."'':''''''~''''''''_~_· --,~ ... --~-~",~ ... ----.:--.--+::-~""'-~--~"--- 1l~ I \ This is one of a series of documentaprepared as part of a project on compt..'Pftr secu~;1ty and privacy at the Institute f~r Computer Sciences and Technology of the National Bureau of Standards. This docl...'lllent is intended primarily fCl~ uae by those who are responsible for managing arid operating government dat~ processing inota11ationa. It provides an understanding of the types of'security problems that arise 1n current computer operating systems, and it suggests ways 1n which the security , u of thelle operating sy.stems can be enhanced. The -:;locument may also be of use to: (1) those engaged in the development of computer ',security techniques, (2) the manufacturers of computer systems and software, and (3) those responsible,_~or mana&ing and operating computer systema in the private sector. This document concerns the security problelD8 that arise in computer operating systems. In order to develop a balanced set of security safeguards, one should use it in conjunction with ;;!ocuments that treat other specific aspects of the security problem.

View Full Text

Details

  • File Type
    pdf
  • Upload Time
    -
  • Content Languages
    English
  • Upload User
    Anonymous/Not logged-in
  • File Pages
    39 Page
  • File Size
    -

Download

Channel Download Status
Express Download Enable

Copyright

We respect the copyrights and intellectual property rights of all users. All uploaded documents are either original works of the uploader or authorized works of the rightful owners.

  • Not to be reproduced or distributed without explicit permission.
  • Not used for commercial purposes outside of approved use cases.
  • Not used to infringe on the rights of the original creators.
  • If you believe any content infringes your copyright, please contact us immediately.

Support

For help with questions, suggestions, or problems, please contact us