Jump to content

Reference monitor

From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by Timlevin (talk | contribs) at 22:49, 23 March 2010 (minor corrections: access control not necessarily type-based; NT reference monitor assertion needs citation). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.
"Reference monitor" redirects here. For broadcast reference monitor, see Video monitor. For audio reference monitor, see Studio monitor.

In operating systems architecture, a reference monitor is a tamperproof, always-invoked, and small-enough-to-be-fully-tested-and-analyzed module that controls all software access to data objects or devices (verifiable). The reference monitor verifies that the request is allowed by the access control policy. For example, Windows 3.x and 9x operating systems were not built with a reference monitor, whereas the Windows NT line, which also includes Windows 2000 and Windows XP, was designed to contain a reference monitor (needs citation), although it is not clear that its properties (tamperproof, etc.) have ever been independently verified, or what level of computer security it was intended to provide.

The Reference Monitor concept was introduced in the Computer Security Technology Planning Study (Oct, 1972) by James Anderson & Co.

Systems evaluated at B2 and above by the TCSEC must enforce the reference monitor concept.

See also

Stub icon

This security software article is a stub. You can help Wikipedia by expanding it.

Retrieved from "https://en.wikipedia.org/w/index.php?title=Reference_monitor&oldid=351656820"