Citation[]
Department of Defense, National Computer Security Center, A Guide to Understanding Discretionary Access Control in Trusted Systems (known as the "Orange Book") (NCSC-TG-003) (Ver. 1) (Sept. 30, 1987) (full-text).
Overview[]
The guidelines defined in this document are intended to be used by computer hardware and software designers who are building systems with the intent of meeting the requirements of the Department of Defense Trusted Computer System Evaluation Criteria (DOD Directive 5200.28-STD).
This guide discusses issues involved in designing, implementing and evaluating DAC mechanisms.