UCLA Secure Unix

摘要: There has been considerable interest for some time in developing an operating system which could be conclusively shown secure, the sense that information stored on behalf of a heterogeneous user population was safely protected from unauthorized access or modification, even face skilled attempts to do so. Early attain this goal consisted largely auditing existing through at circumventing controls, and then revising implementation code block any successful paths were found. Unfortunately, approach failed produce secure system, because third generation systems contain so many errors "penetration audits" followed by patches inevitably led whose controls still easily penetrated.