A multi-layered approach to security in high assurance systems

J. Alves-Foss, C. Taylor, P. Oman
2004 37th Annual Hawaii International Conference on System Sciences, 2004. Proceedings of the  
Past efforts at designing and implementing ultra high assurance systems for government security and safety have centered on the concept of a monolithic security kernel responsible for a system-wide security policy. This approach leads to inflexible, overly complex operating systems that are too large to evaluate at the highest assurance levels (e.g., Common Criteria EAL 5 and above). We describe a new multilayered approach to the design and verification of embedded trustworthy systems that is
more » ... rrently being used in the implementation of real time, embedded applications. The framework supports multiple levels of safety and multiple levels of security, based on the principle of creating separate layers of responsibility and control, with each layer responsible for enforcing its own security policy.
doi:10.1109/hicss.2004.1265709 dblp:conf/hicss/Alves-FossTO04 fatcat:4vrbgao35bhhjjdrnos5ss5l7i