摘要: The early 1980s saw the development of some rather sophisticated distributed systems. These were not merely networked file systems: rather, using remote procedure calls, hierarchical naming, and what would now be called middleware, they allowed a collection systems to operate as coherent whole. One such system in particular was developed at Newcastle that pre-existing applications (Unix) used, completely unchanged, components an apparently standard large (multiprocessor) Unix system. secure (DSS) described our 1983 paper proposed new way construct by exploiting design freedom created this form computing. DSS separated security concerns policy enforcement from those due resource sharing used variety mechanisms (dedicated components, cryptography, periods processing, separation kernels) manage ways simpler than before. In retrospective, we provide full original text paper, prefaced introductory discussion context its time, followed account subsequent implementation deployment industrial prototype DSS, description modern interpretation MILS architecture. We conclude outlining current opportunities challenges presented approach security.
ieeecomputersociety.org
sri.com 参考文章(24)
Brian Randell, Recursively Structured Distributed Computing Systems. 3rd IEEE Symposium on Reliability on Distributed Software and Database Systems. pp. 3- 11 ,(1983)
Derek Barnes, The Provision of Security for User Data on Packet Switched Networks. ieee symposium on security and privacy. pp. 121- 126 ,(1983)
Peter Naur, Brian Randell, Software engineering : report on a conference sponsored by the NATO Science Committee, Garmisch, Germany, 7th to 11th October 1968 NATO, Scientific Affairs Division. ,(1969)
J. M. Rushby, Proof of separability: A verification technique for a class of a security kernels Proceedings of the 5th Colloquium on International Symposium on Programming. pp. 352- 367 ,(1982) , 10.1007/3-540-11494-7_23
H. Kopetz, A. Avizienis, T. Anderson, J. C. Laprie, P. A. Lee, Fault tolerance, principles and practice ,(1990)
Dorothy Elizabeth Robling Denning, Cryptography and data security ,(1982)
Shrivastava, Panzieri, The Design of a Reliable Remote Procedure Call Mechanism IEEE Transactions on Computers. ,vol. 31, pp. 692- 697 ,(1982) , 10.1109/TC.1982.1676069
D. R. Brownbridge, L. F. Marshall, B. Randell, The newcastle connection or UNIXes of the world unite Software - Practice and Experience. ,vol. 12, pp. 1147- 1162 ,(1982) , 10.1002/SPE.4380121206
J.E. Dobson, B. Randell, Building Reliable Secure Computing Systems Out Of Unreliable Insecure Components ieee symposium on security and privacy. pp. 187- 187 ,(1986) , 10.1109/SP.1986.10018
Rushby, Randell, A Distributed Secure System IEEE Computer. ,vol. 16, pp. 55- 67 ,(1983) , 10.1109/MC.1983.1654443