et@ajk.tele.fi (Eero Torri) (06/20/91)
Hello all!
I'm posting this on behalf of Arto Karila
--------------------- Forwarded message -----------------------
I have written a study "Open Systems Security - an Architectural Framework"
which is now availabe in post script form through the Internet.
Based on the Internet architecture I have analyzed the security requirements
of some real applications, found the security services needed with them,
placed these services into the layers of the OSI model, and found some existing
mechanisms that can be used to implement them.
Even though this work is based on the existing international standards it is
not limited to the OSI world but should be directly applicable to virtually any
layered telecommunications architecture such as the DoD Internet architecture.
It appears to be justifiable to place all security functions in the layers
4 and seven of the OSI model (corresponding to TCP and the "upper layer" in
the DoD Internet model).
We have also implemented a secure FTAM service (File Transfer, Access and
Management, corresponding approximately to FTP) running on Sun and based on
the ISODE software package and tested the ideas presented here in practise.
We have also built a rather similar system for a client based on TCP/IP.
Professor David Farber of the University of Pennsylvania had the patience to
got through my dissertation which was the basis of this paper. He suggested
that I make it available through the Internet. So, here it is. Feel free to
distribute it for non-profit purposes. If you have any comments, please
E-mail them to me at the address below.
The study is over a hundred pages long with the appendix included. It is
available in both compressed and uncompressed form (about 750 and 250 kB,
respectively) but I suggest you transfer it in its compressed form.
Here is a sample session of how it's done:
% ftp ajk.tele.fi
Connected to ajk.tele.fi.
220 ajk.tele.fi FTP server (SunOS 4.0) ready.
Name (ajk.tele.fi:atk): anonymous
331 Guest login ok, send ident as password.
Password: *** type your username here, e.g. atk@ajk.tele.fi ***
230 Guest login ok, access restrictions apply.
ftp> bin
200 Type set to I.
ftp> cd /PublicDocuments
250 CWD command successful.
ftp> get OpenSystems.Security.ps.Z
200 PORT command successful.
150 Binary data connection for OpenSystemsSecurity.ps.Z (130.233.192.2,3814)
(246271 bytes).
226 Binary Transfer complete.
246271 bytes received in 8.2 seconds (29 Kbytes/s)
ftp> quit
221 Goodbye.
% uncompress OpenSystemsSecurity.ps
Host: ajk.tele.fi (131.177.5.20)
Username: anonymous
Password: your-user-id
Directory: /PublicDocuments
Files: OpenSystems.Security.ps = the normal post script file (ca. 750 kB)
OpenSystems.Security.ps.Z = the same but compressed (ca. 250 kB)
Other info:
- The file was prepared with Macintosh and MS-Word
- The Macintosh LaserPrep file was appended to the beginning of the file
- The file should print on any post script laser with Times font
(it has only been tested with Apple LaserWriter)
- If you are using a printer that has already been initialized with the
LaserPrep file, turn it off and on again before printing (or remove the
Laser Prep part of this file)
- The page is set for the European A4 size which is slightly taller than
US letter size. With letter size you may loose the footers. With US legal
paper size it should work fine.
If you have technical problems in getting the file contact our system
administrator Eero Torri (et@ajk.tele.fi).
--
Arto Karila + INTERNET: atk@ajk.tele.fi
Telecom Finland + TEL : +358 0 704 2000
Business Systems R&D + FAX : +358 0 704 2712
P.O. Box 140
00511 HELSINKI
-----------------------------------------------------------------
--
Eero Torri + INTERNET: et@ajk.tele.fi
TELE/Palvelukehitys + TELEBOX : spp482
Elim{enkatu 8 + TEL : +358 0 704 2973
00511 HELSINKI + FAX : +358 0 704 2712davy@wombat.erg.sri.com (David Curry) (06/21/91)
In article <1991Jun20.052020.15854@ajk.tele.fi>, et@ajk.tele.fi (Eero Torri) writes: |> |>Hello all! |> |>I'm posting this on behalf of Arto Karila |> |>--------------------- Forwarded message ----------------------- |> |>I have written a study "Open Systems Security - an Architectural Framework" |>which is now availabe in post script form through the Internet. |> |>Other info: |>- The file was prepared with Macintosh and MS-Word |>- The Macintosh LaserPrep file was appended to the beginning of the file |>- The file should print on any post script laser with Times font |> (it has only been tested with Apple LaserWriter) |>- If you are using a printer that has already been initialized with the |> LaserPrep file, turn it off and on again before printing (or remove the |> Laser Prep part of this file) |>- The page is set for the European A4 size which is slightly taller than |> US letter size. With letter size you may loose the footers. With US legal |> paper size it should work fine. Has anyone managed to get this thing to print on a non-LaserWriter? I tried, and ended up with mirror-images of the pages (and they were offset wrong too). This is on an Imagen with UltraScript. Deleting the LaserPrep stuff doesn't work, because then there's all sorts of undefined functions and other nastiness. Dave Curry SRI International