An Augmented Capability Architecture to Support Lattice Security and Traceability of Access

@article{Karger1984AnAC,
  title={An Augmented Capability Architecture to Support Lattice Security and Traceability of Access},
  author={Paul A. Karger and A. J. Herbert},
  journal={1984 IEEE Symposium on Security and Privacy},
  year={1984},
  pages={2-2}
}

Paul A. Karger, A. J. Herbert
Published 1984 in 1984 IEEE Symposium on Security and Privacy
DOI:10.1109/SP.1984.10001

This paper describes a protection system that supports the confinement of access as required by non-discretionary access control models such as the Bell and LaPadula lattice model. The approach is to use capability-based protection at the lowest level for implementing confined domains, in support of access control lists for expressing security policies outside the security kernel. The implementation of such a system in the context of hardware support for capabilities is discussed.

Highly Cited

This paper has 83 citations. REVIEW CITATIONS

From This Paper

Figures, tables, and topics from this paper.

Figures & Tables

Explore Further: Traceability

Search for additional papers on this topic

Explore Further: Topics Discussed in This Paper

Citations

Publications citing this paper.

Sort by:

Verifying the EROS Confinement Mechanism

Jonathan S. Shapiro, Sam Weber

IEEE Symposium on Security and Privacy • 2000

View 9 Excerpts

Highly Influenced

A Secure Identity-Based Capability System

Jean Bacon, Malcolm Burrows, Paul Karger, Mark Lomas

1989

View 5 Excerpts

Highly Influenced

DROP THE ROP : Fine Grained Control-Flow Integrity for The Linux Kernel

João Moreira, Sandro

2017

View 1 Excerpt

Pileus: protecting user resources from vulnerable cloud services

Yuqiong Sun, Giuseppe Petracca, Xinyang Ge, Trent Jaeger

ACSAC • 2016

View 1 Excerpt

Towards a Performance-Aware Power Capping Orchestrator for the Xen Hypervisor

Marco Arnaboldi, Matteo Ferroni, Marco D. Santambrogio

EWiLi • 2016

View 1 Excerpt

Digital alienation as the foundation of online privacy concerns

SIGCAS Computers and Society • 2015

View 1 Excerpt

Analysis of Monolithic and Microkernel Architectures: Towards Secure Hypervisor Design

Jordan Shropshire

2014 47th Hawaii International Conference on System Sciences • 2014

View 1 Excerpt

Hardware virtualization based security solution for embedded systems

Sándor Lukács, Andrei Lutas, Dan Lutas, Gheorghe Sebestyen

2014 IEEE International Conference on Automation, Quality and Testing, Robotics • 2014

View 1 Excerpt

NativeWrap: ad hoc smartphone application creation for end users

Adwait Nadkarni, Vasant Tendulkar, William Enck

WISEC • 2014

View 1 Excerpt

Behavioural access control in distributed environments

2013

‹
1
2
3
4
5
›

Citation Statistics

83 Citations

Citations per Year

Semantic Scholar estimates that this publication has 83 citations based on the available data.

See our FAQ for additional information.

References

Publications referenced by this paper.

Showing 1-8 of 8 references

A Hardware Implementation of Capability-Based Addressing

Gary J Myers, B. R. S. Buckingham

Operating Systems Review • 1980

Reflections on an Operating System Design

Butler W. Lampson, Howard E. Sturgis

Commun. ACM • 1976

A Comment on the Confinement Problem

Steven B. Lipner

SOSP • 1975

A Note on the Confinement Problem

Butler W. Lampson

Commun. ACM • 1973

A Hardware Architecture for Implementing Protection Rings

Michael D. Schroeder, Jerome H. Saltzer

Commun. ACM • 1972

Protection: principles and practice

G. Scott Graham, Peter J. Denning

AFIPS Spring Joint Computing Conference • 1971

Programming semantics for multiprogrammed computations

Jack B. Dennis, Earl C. Van Horn

Commun. ACM • 1966

Non - Discretionary Controls for Commercial Applications

S. B. Lipner

-1

Similar Papers

Loading similar papers…