good books
David Collier-Brown - Sun Canada
davecb at scot.canada.sun.com
Tue Apr 11 14:49:40 GMT 2000
Timothy Fraser <tfraser at tislabs.com> wrote:
| Let me add my favorite to the list of good books previously posted:
| Dorothy Denning's "Cryptography and Data Security" Addison-Wesley 1982,
| 1983.
| Note that this book pre-dates the `Orange Book'. IMHO, this is a
| Good Thing. Ignore the Orange Book. It was a codification of government
| procurement requirements geared towards keeping secrets on wopping big
| time-sharing systems. It's really not relevant to building the kind of
| secure systems needed in the non-DoD and commercial Internet today.
It had to be extended by the red book to start addressing
our problems...
However, the most significant criticism I've heard of the
orange book is from Dr. Denning, who I had a chance to talk
to at a conference this year. She said that we "should
have left out the *-property", and went on to say that
we spent a lot of time doing things that didn't advance
civil or military security chasing stars (;-))
A small but significant improvement in security might be
MAC with only the simple-security-property. Which is
what I suspected many moons ago when trying to do @#%$#%!!
proof outlines for (Canadian) External Affairs and found
that the *-property was scary-hard. Hearing the same thing
from real expert like Dr. Denning was really nice (;-)).
--dave
--
David Collier-Brown in Boston
Phone: (781) 442-0734, Room BUR03-3632
To Unsubscribe: send mail to majordomo at trustedbsd.org
with "unsubscribe trustedbsd-discuss" in the body of the message
More information about the trustedbsd-discuss
mailing list