Developing Secure Computer Systems
This chapter examines the components of a secure computer system it is useful to review the structure of a standard computer system. Typical External Security measures include those portions of the total security package for the computer system that do not include the hardware or software of the actual system itself. These measures include: physical security, personnel security, and administrative security. Administrative Security describes the methods to be used to implement the chosen security policies. There are many other examples of the types of policies and procedures that should be described by an organization's administrative security mechanism. One way to interject some security control over a computer system is to create what is known as security or execution domains. The reference monitor bases its access control decisions on a set of rules which explain what subjects can access which objects. The actual implementation of a security kernel will include both hardware and software concerns.