Location of Repository

IMPLEMENTING SECURITY POLICY IN A LARGE DEFENCE PROCUREMENT 1

By M. J. Nash

Abstract

At the 1993 ACSAC conference a previous paper was presented describing the security policy developed for a large, integrated defence procurement, the United Kingdom Royal Air Force Logistics Information Technology System (LITS). The current paper describes some of the practical difficulties encountered in implementing that security policy during subsequent stages of the LITS system development. Issues discussed include the difficulties of “future proofing ” a security infrastructure in the real world where user security requirements can and do change in ways that were not anticipated, the tension between security policy requirements and cost effective security solutions, and the conflict between labelling data and the use of untrusted applications

Year: 2011
OAI identifier: oai:CiteSeerX.psu:10.1.1.198.5975
Provided by: CiteSeerX
Download PDF:
Sorry, we are unable to provide the full text but you may find it at the following location(s):
  • http://citeseerx.ist.psu.edu/v... (external link)
  • http://www.gammassl.co.uk/topi... (external link)
  • Suggested articles


    To submit an update or takedown request for this paper, please submit an Update/Correction/Removal Request.