A multilevel secure message preparation workstation is described as a prototypical secure application. Suggestions for the development of secure applications are introduced. Techniques have been developed and demonstrated that permit untrusted applications to be integrated with a highly secure trusted computer base (TCB). By using an existing TCB, and approximately the same level of resources as for nonsecure application development, it is demonstrated that highly-secure evaluable applications are achievable.
展开▼