Model-Based Assurance of Security Controls

Tags

based, control, model, security

Special Forums News, Links, Events and Announcements UNIX and Linux RSS News Model-Based Assurance of Security Controls

02-07-2008

Registered User

26,240, 27

Join Date: Sep 2000

Last Activity: 1 August 2008, 3:09 PM EDT

Posts: 26,240

Thanks Given: 0

Thanked 27 Times in 26 Posts

Model-Based Assurance of Security Controls

HPL-2008-7 Model-Based Assurance of Security Controls - Beres, Yolanta; Baldwin, Adrian; Shiu, Simon
Keyword(s): compliance, assurance, security, audit, metrics
Abstract: The paper presents an innovative way to assess the effectiveness of security controls where measurable aspects of controls are first captured in the models and then the models are used to analyse the security data gathered from the IT environment. The aim is to lift the risk and security control man ...
Full Report

More...

Linux Bot

View Public Profile for Linux Bot

Find all posts by Linux Bot

Previous Thread | Next Thread

1 More Discussions You Might Find Interesting

1. What is on Your Mind?

Small Model Guitars Based on Artist - Have You Seen These?

Today I was in the market place and found this new shop that sells small models of guitars, categorized by the artists who played them. Have you seen these before? What do you think? Is this something anyone would collect?

LEARN ABOUT OSF1

create_file_securely

create_file_securely(3) 				     Library Functions Manual					   create_file_securely(3)

NAME

       create_file_securely - Create a file in the authentication database  (Enhanced Security)

LIBRARY

       Security library - libsecurity.so

SYNOPSIS

       #include <sys/security.h>
       #include <prot.h>

       int create_file_securely(
	    char *file,
	    int decibels,
	    char *purpose);

PARAMETERS

       *file  The file parameter is the pathname to create.

       decibels
	      The  decibels parameter is AUTH_SILENT, AUTH_LIMITED, or AUTH_VERBOSE.  Using AUTH_SILENT blocks signals.  The AUTH_LIMITED constant
	      allows a limited amount of dialog.  Using AUTH_VERBOSE specifies that the routine should try to wait until the file can  be  created
	      (up to 100 tries, 1 second apart).  The values for decibels are as follows:

       0   AUTH_SILENT

       1   AUTH_LIMITED

       2   AUTH_VERBOSE

       purpose
	    The purpose parameter is a tag for the audit log entry created by the audit daemon when a file cannot be created.

DESCRIPTION

       The  create_file_securely  routine  creates  a file as specified in the file control database, /etc/auth/system/files.  It is more flexible
       than coding the discretionary attributes of the file, and a further assurance that the file being created is in	accordance  with  security
       concerns.

       If  the	path to the file being created does not exist, create_file_securely attempts to create the path.  If each directory in the path is
       not defined in the file control database, create_file_securely fails and returns CFS_NO_FILE_CONTROL_ENTRY.

RETURN VALUES

       The create_file_securely routine returns the following values:

       0   CFS_GOOD_RETURN

       1   CFS_CAN_NOT_OPEN_FILE

       2   CFS_NO_FILE_CONTROL_ENTRY

       3   FS_CAN_NOT_CHG_MODE

       4   CFS_CAN_NOT_CHG_OWNER_GROUP

FILES

       The file control database.

RELATED INFORMATION

       Files: files(4) delim off

															   create_file_securely(3)

UNIX and Linux RSS News