Cryptographic Security Architecture: Design and Verification
Peter GutmannISBN: 0387953876;
Traditional security toolkits have concentrated mostly on defining a programming interface (API) and left the internals up to individual implementors. This book presents a design for a portable, flexible security architecture based on traditional security models involving a security kernel that controls access to security-relevant objects and attributes based on a configurable security policy. Layered on top of the kernel are various objects that abstract core functionality, such as encryption and digital signature capabilities, certificate management, and secure sessions and data enveloping (email encryption) in a manner that allows them to be easily moved into cryptographic devices, such as smart cards and crypto accelerators for extra performance or security. The versatility of the design has been proven through its use in implementations ranging from 16-bit microcontrollers through to supercomputers, as well as a number of unusual areas, such as security modules in ATMs.
- OZON.ru 32969