论文信息 - Penetrating an Operating System: A Study of VM/370 Integrity

Penetrating an Operating System: A Study of VM/370 Integrity

Discussed is a methodology for discovering operating system design flaws as an approach to learning system design techniques that may make possible greater data security. Input/output has been found to be involved in most of the weaknesses discovered by a study team in a particular version of the system. Relative design simplicity was found to be the source of greatest protection against penetration efforts.

C. Richard Attanasio | Peter W. Markstein | Ray J. Phillips | C. R. Attanasio | Ray J. Phillips

[1] William S. McPhee. Operating System Integrity in OS/VS2 , 1974, IBM Syst. J..

[2] Mark McGrath. Virtual Machine Computing in an Engineering Environment , 1972, IBM Syst. J..

[3] Richard P. Parmelee,et al. Virtual Storage and Virtual Machine Concepts , 1972, IBM Syst. J..

[4] Gerald J. Popek,et al. Verifiable secure operating system software , 1974, AFIPS '74.

[5] Gerald J. Popek,et al. Encapsulation: an approach to operating system security , 1974, ACM '74.

[6] Stuart E. Madnick,et al. An approach to information system isolation and security in a shared facility , 1973 .

[7] Anita K. Jones,et al. Protection in programmed systems. , 1973 .

[8] Clark R. Renninger. Approaches to privacy and security in computer systems , 1974 .