Elsevier

Computers & Security

Volume 9, Issue 7, November 1990, Pages 631-643
Computers & Security

A comprehensive security system— the concepts, agents and protocols

https://doi.org/10.1016/0167-4048(90)90062-XGet rights and content

Abstract

This paper presents an overview of a comprehensive security architecture for use within, and as a value-added enhancement to, the ISO Open System Interconnection model. The system is arranged basically as an application layer service but can allow all of the ISO-recommended security facilities to be provided at any layer of the model. It is suitable as an “add-on” service to existing arrangements or can be fully integrated into new applications. For large-scale, distributed processing operations, a network of “security management centres” is suggested, that can help to ensure that system misuse is minimized, and that flexible operations are provided in an efficient manner.

References (5)

  • ISO/IEC JTC1

    ISO Technical Report on Security in Open Systems

    (June 1988)
  • Open Systems Interconnection: Basic Reference Model—Security Architecture

    (February 1989)
There are more references available in the full text version of this article.

Cited by (0)

1

Simon J. Shepherd held a Commission for 12 years in the Royal Navy, and gained a First Class Honours Degree in electrical engineering at the Royal Naval College Manadon in 1986. On leaving the Royal Navy, he held the position of Senior Systems Engineer in the Special Studies Group at British Aerospace plc, where he was responsible for modelling and simulation of guided weapons systems. He is currently with the Network Research Group at Polytechnic South West, where he is investigating security in large open systems for the UBM United Kingdom Laboratories, and is registered for a Ph.D. with the CNAA.

2

Assistant Head of Department of Communication Engineering at Polytechnic South West, Plymouth, and the leader of its Network Research Group. He is currently involved with research into security systems within networks adn techniques for the design and optimization of switching systems, in conjunction with major U.K. companies. He is a member of the CEC COST II “Security Mechanisms for Computer Networks” project.

3

Ahmed Patel received his M.Sc. and Ph.D. degrees in computer science from Trinity College, University of Dublin, in 1977 and 1984 respectively. He specialized in the analysis, design and implementations of communications protocols for computer networking. From 1979 to 1982 he was responsible for developing the Experimental Irish Universties Data Networks. From 1984 to 1986 he was responsible for developing the EuroKom computer conferencing and electronic mail service which is used by ESPRIT participants. He currently lectures in the Department of Computer Science at University College Dublin. His special fields of research interest include computer networks, conformance testing of communications protocols, network security, network management, broadand communication networks, message handling and directory systems, distributed processing and real-time multitask operating systems. Dr. patel has published many technical papers in these areas and he is active in a number of technical working groups in the COST-11, RARE, RACE and ESPRIT communities.

View full text