Assuring Distributed Trusted Mach. Todd Fine and Spencer E. Minear. Proceedings of the 199? IEEE Security and Privacy Conference. (postscript)
Providing Policy Control Over Object Operations in a Mach Based System Spencer E. Minear. Proceedings of the USENIX 199? Security Symposium. (postscript)
On Trusting Trust Ken Thompson. Unix Review, Vol 7. No 11, 1984, pp 71-74.
The Protection of Information in Computer Systems J.D. Saltzer and M.D. Schroeder. Proceedings of IEEE, Vol 63 No 9, March 1975.
On Access Checking in Capability-Based Systems R.Y. Kain and C.E. Landwehr. IEEE Transactions on Software Engineering, Vol. SE-13, No. 2, Feb 1987.
Formal Models for Computer Security Carl E. Landwehr. ACM Computing Surveys, Vol. 13, No 3, September 1981.
Unix Operating System Security Grampp, F.T. and Morris, R.H. AT&T Bell Labs Technical Journal, Vol. 63, No. 8, Part 2. October 1984.
Security Mechanisms in High-Level Network Protocols V.L. Voydock and S.T. Kent. Computing Surveys, June 1983.
A Practical Alternative to Hierachical Integrity Policies W.E Boebert and R.Y. Kain. Proceedings of the 8th National Computer Security Conference. October 1985.
Verifying Security M.H. Cheheyl, M. Gasser, et al. ACM Computing Surveys, Vol 13, No 3. September 1981.
An Experience Using Two Covert Channel Analysis Techniques on a Real System Design R. Kemmerer, J. McHugh, J.T. Haigh, and W.D. Young. IEEE Tranactions on Software Engineering. Vol SE-13, No 2. Feb 1982.
Experience with Viruses on Unix Systems Tom Duff. Computing Systems, Vol 2, No 2. Spring 1989
Formal Verification of Hardware Correctness P. Camurati and P. Prinetto. IEEE Computer, July 1988.
Building a Secure Computer System, Morrie Gasser. 1988. (out of print)
Computers at Risk book
keykos papers/notes
ms crypto 101 paper
beginning crypto page
matt blaze CFS paper
peter lee paper (SCC)
Protection is a Software Issue B. Bershad et al. Proceedings of the Fifth Workshop on Hot Topics in Operating Systems. (postscript)
Building Systems that Flexibly Control Downloaded Executable Content. Trent Jaeger, A.D. Rubin, and Atul Prakash. Proceedings of the 6th USENIX Security Symposium (postscript)
Java Security: From HotJava to Netscape and Beyond Drew Dean, E.W. Felten, and D.s. Wallach. Proceedgins of the 1996 IEEE Symposium on Security and Privacy.(postscript)
Security Issues in Internet Commerce NCSA White Paper.
Microsoft Internet Security White Paper
The Persistent Relevance of the Local Operating System to Global Applications Jay Lepreau, Bryan Ford, and Mike Hibler. (postscript.Z)
Designing an Academic Firewall: Policy, Practice, and Experience with SURF Michael B. Greenwald, Sandeep K Singhal, Jonathan R. Stone, and David R. Cheriton. (postscript)
A Comparison of Type Enforcement and Unix Setuid Implementation of Well-Formed Transactions. D.J. Thompson and J.T. Haigh. (postscript)
TIS "removing root" paper.
A Paradigm for User-Defined Security Policies 14th IEEE Symposium on Reliable Distributed Systems. Winfried E. Kuhnhauser (postscript)
On Paradigms for User-Defined Security Policies in Multipolicy Environments. 11th IFIP International Information Security Conference. Winfried E. Kuhnhauser. (postscript)
A Framework to Support Multiple Security Policies 7th Canadian Computer Security Symposium. Winfried E. Kuhnhauser and Michael von Kopp Ostrowski (postscript)
Larch references are located on the Introduction to Larch page.