The Protection of Information in Computer Systems | |
---|---|
Created | 1975 |
Author(s) | |
Subject | Information security |
The Protection of Information in Computer Systems is a 1975 seminal publication by Jerome Saltzer and Michael Schroeder about information security. [1] [2] The paper emphasized that the primary concern of security measures should be the information on computers and not the computers itself. [3]
It was published 10 years prior to Trusted Computer System Evaluation Criteria, commonly known as the Orange Book. [4]
The following design principles are laid out in the paper: