{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,19]],"date-time":"2025-06-19T04:52:37Z","timestamp":1750308757490,"version":"3.41.0"},"publisher-location":"New York, NY, USA","reference-count":34,"publisher":"ACM","license":[{"start":{"date-parts":[[2007,6,20]],"date-time":"2007-06-20T00:00:00Z","timestamp":1182297600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":[],"published-print":{"date-parts":[[2007,6,20]]},"DOI":"10.1145\/1266840.1266853","type":"proceedings-article","created":{"date-parts":[[2007,9,25]],"date-time":"2007-09-25T19:21:05Z","timestamp":1190748065000},"page":"81-90","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":21,"title":["Managing the risk of covert information flows in virtual machine systems"],"prefix":"10.1145","author":[{"given":"Trent","family":"Jaeger","sequence":"first","affiliation":[{"name":"Penn State University, University Park, PA"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Reiner","family":"Sailer","sequence":"additional","affiliation":[{"name":"IBM Research -- Watson, Hawthorne, NY"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Yogesh","family":"Sreenivasan","sequence":"additional","affiliation":[{"name":"Penn State University, University Park, PA"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2007,6,20]]},"reference":[{"key":"e_1_3_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/945445.945462"},{"key":"e_1_3_2_1_3_1","volume-title":"Proceedings of the 8th National Computer Security Conference","author":"Boebert W. E.","year":"1985","unstructured":"W. E. Boebert and R. Y. Kain . A practical alternative to hierarchical integrity policies . In Proceedings of the 8th National Computer Security Conference , 1985 . W. E. Boebert and R. Y. Kain. A practical alternative to hierarchical integrity policies. In Proceedings of the 8th National Computer Security Conference, 1985."},{"key":"e_1_3_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.1989.36295"},{"key":"e_1_3_2_1_5_1","volume-title":"http:\/\/www.commoncriteriaportal.org\/","author":"Common","year":"2007","unstructured":"Common criteria portal. http:\/\/www.commoncriteriaportal.org\/ , 2007 . Common criteria portal. http:\/\/www.commoncriteriaportal.org\/, 2007."},{"key":"e_1_3_2_1_6_1","volume-title":"Inc.","author":"Devine S. W.","year":"1998","unstructured":"S. W. Devine , E. Bugnion , and M. Rosenblum . Virtualization system including a virtual machine monitor for a computer with a segmented architecture. VMWare , Inc. , October 1998 . US Patent No. 6397242. S. W. Devine, E. Bugnion, and M. Rosenblum. Virtualization system including a virtual machine monitor for a computer with a segmented architecture. VMWare, Inc., October 1998. US Patent No. 6397242."},{"key":"e_1_3_2_1_7_1","first-page":"231","volume-title":"POLICY","author":"Dias P.","year":"2003","unstructured":"P. Dias , C. Ribeiro , and P. Ferreira . Enforcing history-based security policies in mobile agent systems . In POLICY , pages 231 -- 234 , 2003 . P. Dias, C. Ribeiro, and P. Ferreira. Enforcing history-based security policies in mobile agent systems. In POLICY, pages 231--234, 2003."},{"key":"e_1_3_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/SECPRI.2004.1301314"},{"key":"e_1_3_2_1_9_1","volume-title":"Proceedings of the first Annual Security-enhanced Linux Symposium","author":"Herzog A. L.","year":"2005","unstructured":"A. L. Herzog , J. D. Guttman , D. R. Harris , J. D. Ramsdell , A. E. Segall , and B. T. Sniffen . Policy analysis and generation work at MITRE . In Proceedings of the first Annual Security-enhanced Linux Symposium , March 2005 . A. L. Herzog, J. D. Guttman, D. R. Harris, J. D. Ramsdell, A. E. Segall, and B. T. Sniffen. Policy analysis and generation work at MITRE. In Proceedings of the first Annual Security-enhanced Linux Symposium, March 2005."},{"key":"e_1_3_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/RISP.1991.130768"},{"key":"e_1_3_2_1_11_1","volume-title":"http:\/\/lwn.net\/Articles\/156140\/","author":"Red Hat IBM","year":"2005","unstructured":"atsec and IBM to make Red Hat Linux a government certified trusted operating system. http:\/\/lwn.net\/Articles\/156140\/ , 2005 . atsec and IBM to make Red Hat Linux a government certified trusted operating system. http:\/\/lwn.net\/Articles\/156140\/, 2005."},{"key":"e_1_3_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1145\/996943.996944"},{"key":"e_1_3_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.5555\/1268476.1268480"},{"key":"e_1_3_2_1_14_1","first-page":"59","volume-title":"Proceedings of the 12th USENIX Security Symposium","author":"Jaeger T.","year":"2003","unstructured":"T. Jaeger , R. Sailer , and X. Zhang . Analyzing integrity protection in the SELinux example policy . In Proceedings of the 12th USENIX Security Symposium , pages 59 -- 74 , August 2003 . T. Jaeger, R. Sailer, and X. Zhang. Analyzing integrity protection in the SELinux example policy. In Proceedings of the 12th USENIX Security Symposium, pages 59--74, August 2003."},{"key":"e_1_3_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1145\/990036.990053"},{"key":"e_1_3_2_1_16_1","doi-asserted-by":"publisher","DOI":"10.1145\/937527.937528"},{"key":"e_1_3_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/362375.362389"},{"key":"e_1_3_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.5555\/645984.676028"},{"key":"e_1_3_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1007\/s10207-004-0046-8"},{"key":"e_1_3_2_1_20_1","first-page":"282","volume-title":"Proceedings Fifth Annual Computer Security Applications Conference","author":"Lin T. Y.","year":"1989","unstructured":"T. Y. Lin . Chinese wall security policy - an aggressive model . In Proceedings Fifth Annual Computer Security Applications Conference , pages 282 -- 289 , Tucson, AZ , 1989 . T. Y. Lin. Chinese wall security policy - an aggressive model. In Proceedings Fifth Annual Computer Security Applications Conference, pages 282--289, Tucson, AZ, 1989."},{"key":"e_1_3_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1109\/32.55088"},{"key":"e_1_3_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1109\/ACSAC.2006.47"},{"key":"e_1_3_2_1_23_1","volume-title":"NetTop: Commercial technology in high assurance applications. Available at: http:\/\/www.vmware.com\/pdf\/TechTrendNotes.pdf","author":"Meushaw R.","year":"2000","unstructured":"R. Meushaw and D. Simard . NetTop: Commercial technology in high assurance applications. Available at: http:\/\/www.vmware.com\/pdf\/TechTrendNotes.pdf , 2000 . R. Meushaw and D. Simard. NetTop: Commercial technology in high assurance applications. Available at: http:\/\/www.vmware.com\/pdf\/TechTrendNotes.pdf, 2000."},{"key":"e_1_3_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2006.114"},{"key":"e_1_3_2_1_25_1","first-page":"28","volume-title":"Proceedings of the Fifteenth National Computer Security Conference","author":"Proctor N. E.","year":"1992","unstructured":"N. E. Proctor and P. G. Neumann . Architectural implications of covert channels . In Proceedings of the Fifteenth National Computer Security Conference , pages 28 -- 43 , October 1992 . N. E. Proctor and P. G. Neumann. Architectural implications of covert channels. In Proceedings of the Fifteenth National Computer Security Conference, pages 28--43, October 1992."},{"key":"e_1_3_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1109\/CSAC.2005.13"},{"key":"e_1_3_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1016\/0167-4048(92)90131-A"},{"key":"e_1_3_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1109\/2.241422"},{"key":"e_1_3_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.5555\/646648.759411"},{"key":"e_1_3_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1145\/353323.353382"},{"key":"e_1_3_2_1_31_1","volume-title":"Proceedings of the 1999 National Information System Security Conference","author":"Sobel J.","year":"1999","unstructured":"J. Sobel and A. Alves-Foss . A trace-based model of the Chinese Wall security policy . In Proceedings of the 1999 National Information System Security Conference , 1999 . J. Sobel and A. Alves-Foss. A trace-based model of the Chinese Wall security policy. In Proceedings of the 1999 National Information System Security Conference, 1999."},{"key":"e_1_3_2_1_32_1","volume-title":"March","author":"Trusted Computing Group","year":"2005","unstructured":"Trusted Computing Group . http:\/\/www.trustedcomputinggroup.org\/ , March 2005 . Trusted Computing Group. http:\/\/www.trustedcomputinggroup.org\/, March 2005."},{"key":"e_1_3_2_1_33_1","unstructured":"Tresys technology SETools policy tools for SELinux. http:\/\/www.tresys.com\/selinux\/selinux\\_policy\\_tools.shtml.  Tresys technology SETools policy tools for SELinux. http:\/\/www.tresys.com\/selinux\/selinux\\_policy\\_tools.shtml."},{"key":"e_1_3_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.5555\/882489.884203"},{"key":"e_1_3_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.5555\/647253.720279"}],"event":{"name":"SACMAT07: 12th ACM Symposium on Access Control Models and Technologies","sponsor":["SIGSAC ACM Special Interest Group on Security, Audit, and Control","ACM Association for Computing Machinery"],"location":"Sophia Antipolis France","acronym":"SACMAT07"},"container-title":["Proceedings of the 12th ACM symposium on Access control models and technologies"],"original-title":[],"link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1266840.1266853","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/1266840.1266853","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T20:22:25Z","timestamp":1750278145000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/1266840.1266853"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2007,6,20]]},"references-count":34,"alternative-id":["10.1145\/1266840.1266853","10.1145\/1266840"],"URL":"https:\/\/doi.org\/10.1145\/1266840.1266853","relation":{},"subject":[],"published":{"date-parts":[[2007,6,20]]},"assertion":[{"value":"2007-06-20","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}