356141
Beschreibung
Mindmap von Craig Parker, aktualisiert more than 1 year ago
|
Erstellt von Craig Parker
vor etwa 11 Jahre
|
|
U3. Labels & Access Control
- Information may only flow from an entity with a particular
security label to an entity with at least the same label
- Low level subject may not read up
- high level subject may not write down
- Principles of Bell-LaPladula
- Principles of Bell-LaPladula
- high level subject may not write down
- Low level subject may not read up
- Protection Rings
- Different subjects & Objects given
different numbers (labels)
- OS enforces control of the layers being accessed
- OS controls outer layers accessing inner layers
- All done in a controlled manner
- All done in a controlled manner
- OS controls outer layers accessing inner layers
- OS enforces control of the layers being accessed
- Figure shows lowest number as most important
- Different subjects & Objects given
different numbers (labels)
- VSTa Microkernel
- Needs work??
- Needs work??
- Bell-LaPladula
- Based on a confidentiality policy
- When a subject reads and object,
info flows from Object to Subject
- When writing to an object, info
flows from Subject to Object
- Can write up or on your level, but cant read up
- Can write on your level and read
down, but cant write down
- Based on a confidentiality policy
Medienanhänge
Möchten Sie kostenlos Ihre eigenen Mindmaps mit GoConqr erstellen? Mehr erfahren.