Traducement: A Model for Record Security
- T. Walcott and M. Bishop, “Traducement: A Model for Record Security,”
ACM Transactions on Information and System Security 7(4)
pp. 576–590 (Nov. 2004).
PDF (free, goes to the ACM Digital Library)
Security models generally incorporate elements of both confidentiality and integrity. We examine a case where confidentiality is irrelevant to the process being modeled. In this case, integrity includes not only the authentication of origin and the lack of unauthorized changes to a document, but also the acceptance of all parties that the document is complete, signed by all parties, and cannot be modified further. This is especially critical when the document is recorded, so that it is legally the agreement or statement of record, and any copies of the document have no legal force. We show that current security models do not capture the details of this process. We then present a new security model for this process. This model captures the recordation process, and augments, rather than supplants, existing models. Hence it can also be used with existing security models to describe other situations.