Computer Security Art and Science, 2nd Edition

Chapter 14 Design Principles

FALSTAFF: If I had a thousand sons, the

first human principle I would teach them should

be, to forswear thin potations and to addict

themselves to sack.

— The Second Part of King Henry the Fourth, IV, iii, 133–136.

Specific design principles underlie the design and implementation of mechanisms for supporting security policies. These principles build on the ideas of simplicity and restriction. This chapter discusses those basic ideas and design principles.

14.1 Underlying Ideas

Saltzer and Schroeder [1644] describe eight principles for the design and implementation of security mechanisms; Saltzer and Kaashoek [1643] later refined them. The principles draw on the ideas of simplicity and restriction.

Simplicity ...

Get Computer Security Art and Science, 2nd Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Computer Security Art and Science, 2nd Edition by Matt Bishop

Chapter 14

Design Principles

14.1 Underlying Ideas

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly