600.436
High-Assurance Systems
Fall 01/PCMS Exercise
4
High-Level Security Objectives
¨Allow replication across untrusted
mirrors, but guarantee corruption detection
¨Ensure that modifications can only
be made by parties with valid crypto keys
¨Ensure that for every mod there is
an audit trail, so if key is compromised we know where to
look
¨Support development groups that span
companies
and administrative boundaries