Lookup NU author(s): Emeritus Professor John Dobson
Full text is not currently available for this publication.
Arguments are presented that suggest that information flow models of security are inappropriate for representing the real security concerns of security problem owners. These needs are for the representation of the ""flow of meaning"" rather than the flow of information. Meaning cannot be modelled without an understanding of the enterprise of which the secure system is but a part. A method is prevented of modelling an enterprise so that the security-relevant features of actions, information and the roles of agents can be described and analysed, and which permits organisational security policies to be stated. Some applications of the enterprise modelling technique to security issues are briefly outlined.
Author(s): Dobson JE, McDermid JA
Publication type: Report
Publication status: Published
Series Title: Computing Laboratory Technical Report Series
Report Number: 279
Institution: Computing Laboratory, University of Newcastle upon Tyne
Place Published: Newcastle upon Tyne