Integrated criteria for covert channel auditing
| Autor: | Shi-guang Ju, Chang-da Wang |
|---|---|
| Rok vydání: | 2008 |
| Předmět: |
Computer science
General Engineering Covert channel Data_CODINGANDINFORMATIONTHEORY Audit Computer security computer.software_genre ComputingMilieux_MANAGEMENTOFCOMPUTINGANDINFORMATIONSYSTEMS Trusted Computer System Evaluation Criteria Common Criteria Bandwidth (computing) Communication source Duration (project management) Multilevel security computer |
| Zdroj: | Journal of Zhejiang University-SCIENCE A. 9:737-743 |
| ISSN: | 1862-1775 1673-565X |
| DOI: | 10.1631/jzus.a071510 |
| Popis: | A new concept, the security level difference of a covert channel, is presented, which means the security level span from the sender to the receiver of the covert channel. Based on this, the integrated criteria for covert channel auditing are given. Whereas TCSEC (Trusted Computer System Evaluation Criteria) or CC (Common Criteria for Information Technology Security Evaluation) only use the bandwidth to evaluate the threat of covert channels, our new criteria integrate the security level difference, the bandwidth sensitive parameter, bandwidth, duration and instantaneous time of covert channels, so as to give a comprehensive evaluation of the threat of covert channels in a multilevel security system. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|
Full text from SpringerLink