[EROS-Arch] Excerpts from "The Design and Verification of a Cryptographic Security Architecture" available

Bill Frantz frantz@communities.com
Wed, 29 Nov 2000 14:20:53 -0800 

Peter has designed a kernel for a cryptographic library which uses the idea 
of messages to an object designated by a number (very Eros/E like) along 
with a "Orange Book" like reference monitor implemented in the message logic.
It appears (from his bibliography) that he has not heard of E, Eros or KeyKOS.

The thesis includes a number of examples of Peter's sense of humor.  My 
favorite is using a Microsoft Word Macro Virus as an example of a Layered 
System Implementation.

>From: pgut001@cs.auckland.ac.nz (Peter Gutmann)
>Date: Tue, 28 Nov 2000 14:13:14 (NZDT)
>
>In August I finally submitted my PhD thesis, coming close to wrapping up my
>long career as a tenured graduate student.  Although the work hasn't been
>accepted yet, there has been some interest expressed in portions of it so I've
>put a few chapters online.  Note that these chapters represent a draft
>only and
>are not the completed work.
>
>The main part of the thesis, Chapters 1-5, is available from
>http://www.cs.auckland.ac.nz/~pgut001/pubs/thesis.html.  These chapters
>look at
>an alternative way of building what people have been trying to do with Orange
>Book B3/A1-type systems, but in a way which is feasible and practical for an
>open source system where you don't have tens of millions of dollars and 5-10
>years available to produce a product.
>
>The chapters are (from the web page, where they're links to the docs):
>
>  The software architecture, wherein the cryptlib software architecture is
>  presented
>
>  The security architecture, wherein the cryptlib security architecture is
>  presented
>
>  The kernel implementation, wherein the implementation details of the
>cryptlib
>  security kernel are examined
>
>  Verification techniques, wherein existing methods for building secure
>systems
>  are examined and found wanting
>
>  Verification of the cryptlib kernel, wherein a new method for building a
>  secure system is presented.
>
>Peter.
>

-------------------------------------------------------------------------
Bill Frantz       | Microsoft Outlook, the     | Periwinkle -- Consulting
(408)356-8506     | hacker's path to your      | 16345 Englewood Ave.
frantz@netcom.com | hard disk.                 | Los Gatos, CA 95032, USA