- •Методическое пособие
- •Contents
- •UnitI Quantum systems Word List
- •Quantum Mechanics
- •Quantum Information
- •Unit II Nanotechnologies and nanomaterials in electronics Word List
- •What Is Nanotechnology?
- •UnitIii Microfabrication Word List
- •Microfabrication
- •Micro Electro Mechanical Systems
- •Unit IV
- •Information protection Word List
- •Basic Principle of Information Protection
- •Descriptor-Based Protection Systems
- •The Personal Information Protection and Electronic Documents Act
- •Unit V Computer security Word list
- •Computer Security
- •Secure Coding
- •Hardware Mechanisms that Protect Computers and Data
- •Unit VI Cryptography Word List
- •Symmetric Key Algorithm
- •From the History of Cryptography
- •Unit VII New electronics: research and development Word List
- •Ferreting out Contraband
- •Spintronics Technology May Cool the Laptop
- •Unit VIII
- •Integrated circuits Word List
- •Integrated Circuits
- •The ic Manufacturing Process
- •Unit IX Semiconductors Word List
- •Semiconductors
- •Return of the Vacuum Valve
- •Appendix Supplementary Reading
- •What are Potential Harmful Effects of Nanoparticles?
- •Information Security
- •Security Classification for Information
- •Методическое пособие
Computer Security
One use of the term computer security refers to technology to implement a secure operating system. Much of this technology is based on science developed in the 1980s and used to produce what may be some of the most impenetrable operating systems ever. Though still valid, the technology is in limited use today, primarily because it imposes some changes to system management and also because it is not widely understood. Such ultra-strong secure operating systems are based on operating system kernel technology that can guarantee that certain security policies are absolutely enforced in an operating environment. An example of such a Computer security policy is the Bella-La Padula model. The strategy is based on a coupling of special microprocessor hardware features, often involving a memory management unit, to a special correctly implemented operating system kernel. This forms the foundation for a secure operating system which, if certain critical parts are designed and implemented correctly, can ensure the absolute impossibility of penetration by hostile elements. This capability is enabled because the configuration not only imposes a security policy, but in theory completely protects itself from corruption.
Ordinary operating systems, on the other hand, lack the features that assure this maximal level of security. The design methodology to produce such secure systems is precise, deterministic and logical. Systems designed with such methodology represent the state of the art of computer security although products using such security are not widely known. In sharp contrast to most kinds of software, they meet specifications with verifiable certainty comparable to specifications for size, weight and power. Secure operating systems designed this way are used primarily to protect national security information, military secrets, and the data of international financial institutions. These are very powerful security tools and very few secure operating systems have been certified at the highest level “unclassified”. The assurance of security depends not only on the soundness of the design strategy, but also on the assurance of correctness of the implementation.
The term “high assurance” usually suggests the system has the right security functions that are implemented robustly enough to protect DOD1 and DOE2 classified information. Medium assurance suggests it can protect less valuable information, such as income tax information. Secure operating systems designed to meet medium robustness levels of security functionality and assurance have seen wider use within both government and commercial markets. Medium robust systems may provide the same security functions as high assurance secure operating systems but do so at a lower assurance level. Lower levels mean we can be less certain that the security functions are implemented flawlessly, and therefore less dependable. These systems are found in use on web servers, guards, database servers, and management hosts and are used not only to protect the data stored on these systems but also to provide a high level of protection for network connections and routing services.
Notes:
1DOD – Department of Defense – Министерство обороны США;
2DOE–Department of Energy– Министерство энергетики (США).
Match parts A and B to complete the sentences.
|
A |
B |
|
1. The configuration … . |
a) that the security functions are implemented flawlessly. |
|
2. These are very powerful security tools … . |
b) are based on operating system kernel technology. |
|
3. The strategy is based on a coupling of … . |
c) less valuable information. |
|
4. Lower levels mean we can be less certain … . |
d) completely protects itself from corruption. |
|
5. Such ultra-strong secure operating systems … . |
e) and very few secure operating systems have been certified at the highest level “unclassified”. |
|
6. Medium assurance suggests it can protect … . |
f) special microprocessor hardware units to a special operating system kernel. |
Read paragraph 2 and describe the essence of “high assurance of computer security”.
Express your attitude to the importance of “computer security”.
Make an outline of the text.
Make a short summary of the text in written form using your outline.
Part B
Look at the title. Make your own predictions about the contents of the text.
Read the text and write out key words and phrases revealing the contents of the text.