IBM Skip to main content
  Home     Products & services     Support & downloads     My account  
  Select a country  
Journals Home  
  Systems Journal  
  ·  Current Issue  
  ·  Recent Issues  
  ·  Papers in Progress  
  ·  Search/Index  
  ·  Orders  
  ·  Description  
  ·  Author's Guide  
Journal of Research
and Development
  Staff  
  Contact Us  
  Related link:  
     IBM Security  
IBM Systems Journal  
Volume 40, Number 3, 2001
End-to-End Security
 Table of contents: arrowHTML arrowPDF arrowASCII   This article: arrowHTML arrowPDF arrowASCII arrowCopyright info
   

A method for designing secure solutions - References
by J. J. Whitmore

Cited references

  1. J. J. Whitmore, “Security and e-business: Is There a Prescription?” Proceedings, 21st National Information Systems Security Conference, Arlington, VA (October 6–9, 1998); available at http://csrc.nist.gov/nissc/1998/proceedings/paperD13.pdf.
  2. D. Verton, “Common Ground Sought for IT Security Requirements,” Computerworld 35, No. 11, 8 (March 12, 2001).
  3. P. B. Checkland, Systems Thinking, Systems Practice, John Wiley & Sons, Inc., New York (1981).
  4. W. R. Cheswick and S. M. Bellovin, Firewalls and Internet Security: Repelling the Wily Hacker, Addison-Wesley Publishing Co., Reading, MA (1994).
  5. RFC 1825, Security Architecture for the Internet Protocol (August 1995); available at http://www.ietf.org/rfc.html.
  6. Security Architecture for Open Systems Interconnection for CCITT Applications, ITU-T Recommendation X.800/ISO 7498-2 (1991). Obtainable from http://www.itu.int/itudoc/itu-t/rec/x/x500up/x800.html.
  7. Information Technology—Security Techniques—Evaluation Criteria for IT Security—Part 1: Introduction and General Model, ISO/IEC 15408-1 (1999); available from http://isotc.iso.ch/livelink/livelink/fetch/2000/2489/lttf_Home/
    PubliclyAvailableStandards.htm    .
  8. Information Technology—Security Techniques—Evaluation Criteria for IT Security—Part 2: Security Functional Requirements, ISO/IEC 15408-2 (1999).
  9. Information Technology—Security Techniques—Evaluation Criteria for IT Security—Part 3: Security Assurance Requirements, ISO/IEC 15408-3 (1999).
  10. See http://www.commoncriteria.org/protection_profiles/pp.html.
  11. Guide for Development of Protection Profiles and Security Targets, ISO/IEC PDTR 15446, available at http://csrc.nist.gov/cc/t4/wg3/27n2449.pdf, pp. 69–74.
  12. E. Rechtin, Systems Architecting: Creating and Building Complex Systems, Prentice Hall, New York (1991).
  13. Committee on Information Systems Trustworthiness, National Research Council, Trust in Cyberspace, National Academy Press, Washington, DC (1999).
  14. A. Patel and S. O. Ciardhuain, “The Impact of Forensic Computing on Telecommunications,” IEEE Communications Magazine 38, No. 11, 64–67 (November 2000).
  15. Digital Signature Guidelines, American Bar Association (1996), Section 1.35, available from http://www.abanet.org/scitech/ec/isc/dsgfree.html.
  16. F. B. Schneider, “Enforceable Security Policies,” ACM Transactions on Information and System Security 3, No. 1, 30–50 (February 2000).
  17. P. T. L. Lloyd and G. M. Galambos, “Technical Reference Architectures,” IBM Systems Journal 38, No. 1, 51–75 (1999).
  18. H. Johner, S. Fujiwara, A. S. Yeung, A. Stephanou, and J. Whitmore, Deploying a Public Key Infrastructure, Redbook SG24-5512-00, IBM Corporation, http://www.redbooks.ibm.com.
About IBM | Privacy | Legal | Contact