Glenn H. MacEwen

Learn More
A formal framework called <italic>Security Logic</italic> (<italic>SL</italic>) is developed for specifying and reasoning about security policies and for verifying that system designs adhere to such policies. Included in this modal logic framework are definitions of <italic>knowledge, permission,</italic> and <italic>obligation</italic>. Permission is used(More)
We have received a letter from Jacques Lenfant (Universit~ de Rennes and Laboria, France) which brings to our attention the following errors and criticisms regarding the analysis in this paper. 1. Page 610, lines 26 through 28, should read as follows: Therefore the service period is a random variable, t = b ~ c + x, whose distribution Ft(t) is derived by(More)
Large-scale software systems, distributed or otherwise, are generally complex to describe, construct, manage, understand, and maintain. Current research approaches to reducing this complexity separate software structural and behavioral descriptions. It is important to study and analyze the behavioral as well as structural aspects of software systems. Much(More)
This paper describes current work on the design and specification of a multilevel secure distributed system called SNet. It discusses security models in general, the various problems of information flows in SNet, and the abstract and concrete security model components for SNet. It also introduces Lucid as a language for specifying distributed systems. The(More)