Shiu-Kai Chin, Susan Beth Older
Chapman and Hall/CRC
Published July 26, 2010
Textbook - 352 Pages - 93 B/W Illustrations
ISBN 9781584888628 - CAT# C8628
Series: Chapman & Hall/CRC Cryptography and Network Security Series
For Instructors Request Inspection Copy
For Librarians Available on Taylor & Francis eBooks >>
Developed from the authors’ courses at Syracuse University and the U.S. Air Force Research Laboratory, Access Control, Security, and Trust: A Logical Approach equips readers with an access control logic they can use to specify and verify their security designs. Throughout the text, the authors use a single access control logic based on a simple propositional modal logic.
The first part of the book presents the syntax and semantics of access control logic, basic access control concepts, and an introduction to confidentiality and integrity policies. The second section covers access control in networks, delegation, protocols, and the use of cryptography. In the third section, the authors focus on hardware and virtual machines. The final part discusses confidentiality, integrity, and role-based access control.
Taking a logical, rigorous approach to access control, this book shows how logic is a useful tool for analyzing security designs and spelling out the conditions upon which access control decisions depend. It is designed for computer engineers and computer scientists who are responsible for designing, implementing, and verifying secure computer and information systems.
Access Control, Security, Trust, and Logic
Deconstructing Access Control Decisions
A Logical Approach to Access Control
A Language for Access Control
Sets and Relations
Reasoning about Access Control
Formal Proofs and Theorems
Soundness of Logical Rules
Access Control Mechanisms: Tickets and Lists
Confidentiality, Integrity, and Availability
Discretionary Security Policies
Mandatory Security Policies
Military Security Policies
DISTRIBUTED ACCESS CONTROL
Reasoning about Cryptographic Communications
Certificates, Certificate Authorities, and Trust
Delegation and Its Properties
A Delegation Example: Simple Checking
Networks: Case Studies
SSL and TLS: Authentication across the Web
Kerberos: Authentication for Distributed Systems
ISOLATION AND SHARING
A Primer on Computer Hardware
Ones and Zeros
Virtual Machines and Memory Protection
A Simple Processor
Processors with Memory Segmentation
Controlling Access to Memory and Segmentation Registers
Design of the Virtual Machine Monitor
Access Control Using Descriptors and Capabilities
Address Descriptors and Capabilities
Access Control Using Lists and Rings
Segment Access Controllers
ACL-Based Access Policy for Memory Accesses
Ring-Based Access Control
Confidentiality and Integrity Policies
Classifications and Categories
Bell–La Padula Model, Revisited
Confidentiality Levels: Some Practical Considerations
Biba’s Strict Integrity, Revisited
Lipner’s Integrity Model
Role-Based Access Control
Separation of Duty
Representing RBAC Systems in the Logic
Appendix: Summary of the Access Control Logic
A Summary and Further Reading appear at the end of each chapter.
Focusing on the logic of access control, more than on actual computer programming, this volume is designed as a textbook for undergraduates. Each chapter ends with exercises and a concise description of expected learning outcomes. The authors, both in electrical engineering and computer science at Syracuse University, also teach an intensive summer course on access control for hundreds of ROTC cadets. It contains a useful selection of tables and figures, a notation index and a brief bibliography.
—SciTech Book News, February 2011
|C8628_Downloads.zip||November 24, 2014|
|September 27, 2016||Instructor Resources||
To gain access to the instructor resources for this title, please visit the Instructor Resources Download Hub.
You will be prompted to fill out a registration form which will be verified by one of our sales reps.
We provide complimentary e-inspection copies of primary textbooks to instructors considering our books for course adoption.