Security Controls for Computer Systems: Report of Defense Science Board Task Force on Computer Security
Oct 1, 1979
In 1970, a task force organized for the Defense Science Board examined the problem of computer security in the defense establishment and published a report, [Security Controls for Computer Systems] (R-609-1). The insights and views of the task force are still valid, and can be usefully applied by civil government and industry to problems of safeguarding sensitive data. Civil government and industry have exactly the same computer security needs as defense; some details are different, but the broad principles are the same, even though there is a decade difference between Department of Defense and civilian awareness of information protection. A logical candidate to provide leadership and unifying force in civilian computer security development is the National Bureau of Standards Institute of Computer Science and Technology. This institute could create Federal Information Processing Standards for certifying secure software, as well as specifying the performance requirements of secure operating systems.