Year
1989
Abstract
This paper provides a brief presentation of the formal computer security model currently being developed at the Los Alamos Department of Energy (DOE) Center for Computer Security (CCS). The need to test and verify DOE computer security policy implementation motivated this effort. The actual analytical model was a result of the integration of current research in computer security and previous modeling and research experiences. The model is being developed to define an overall view of the computer and network security domains, to provide a theoretical basis for the design of a security model, and to address the limitations of present formal mathematical models for computer security. The fundamental objective of computer security is to prevent the unauthorized and unaccountable access to a system. The inherent vulnerabilities of computer systems can result in various threats from unauthorized access. The foundation of the Los Alamos DOE CCS model is a series of functionally dependent equations, relations, and expressions. The model is undergoing further refinement and evolution. We expect to apply the model to the discipline of the Bell & LaPadula abstract sets of objects and subjects.