Presentation is loading. Please wait.

Presentation is loading. Please wait.

Confidentiality Policies and Integrity Policies by Stefanie Wilcox.

Published byDebra Cunningham Modified over 9 years ago

Similar presentations

Presentation on theme: "Confidentiality Policies and Integrity Policies by Stefanie Wilcox."— Presentation transcript:

1 Confidentiality Policies and Integrity Policies by Stefanie Wilcox

2 Confidentiality Policies n Prevent the unauthorized disclosure of information n Unauthorized alteration of information n The Bell-LaPadula Model

3 The Bell-LaPadula Model n Military-style classifications n Security Classifications n Security Clearances TOP SECRETTamara,ThomasPersonnel Files SECRETSally, SamuelE-Mail Files CONFIDENTIALClaire,ClarenceActivity Log File UNCLASSIFIEDUlaley, UrsulaTelephone List File

4 The Bell-LaPadula Model n Simple Security Condition: S(subject) can read O(object) if and only if l o <= l s, and S has read access to O. n *-Property: S can write to O if and only if l s <= l o and S has write access to O. n Basic Security Theorem: A system is secure, if all transformations satisfy both.

5 The Bell-LaPadula Model TOP SECRETTamara,ThomasPersonnel Files SECRETSally, SamuelE-Mail Files CONFIDENTIALClaire,ClarenceActivity Log File UNCLASSIFIEDUlaley, UrsulaTelephone List File

6 The Bell LaPadula Model n Principle of Tranquility: Subjects and objects may not change their security levels once they have been instantiated. n Declassification problem n Trusted Entities n Strong Tranquility/Weak Tranquility

7 Integrity Policies n Commercial and Industrial firms are more concerned with accuracy than disclosure. n Goals: 1) Users will not write their own programs, but will use existing production programs and databases. 2) Programmers will develop and test programs on a nonproduction system: if they need access to actual data, they will be given production data via a special process, but will use it on their development system. 3) A special process must be followed to install a program from the development system onto the production system. 4) The special process in #3 must be controlled and audited. 5) The managers and auditors must have access to both the system state and the system logs that are generated.

8 Integrity Policies n Principles of Operation: Separation of Duty Separation of Function Auditing

9 Integrity Policies n Biba(1977)--Integrity Model n Low-Water Mark n Ring Policy n Strict Integrity Policy

10 HDI n Formal Policy(Corporate) n Informal (ERP software, Payroll)

11 Bibliography Bishop, Matt. Computer Security: Art and Science. 2003 www.aw.com Hanover Direct Inc. Corporate Information Systems Use Policy \www.hanoverdircect.com

Download ppt "Confidentiality Policies and Integrity Policies by Stefanie Wilcox."

Similar presentations

Information Flow and Covert Channels November, 2006.

Information Flow and Covert Channels November, 2006.
1 cs691 chow C. Edward Chow Confidentiality Policy CS691 – Chapter 5 of Matt Bishop.

1 cs691 chow C. Edward Chow Confidentiality Policy CS691 – Chapter 5 of Matt Bishop.
CS691 – Chapter 6 of Matt Bishop

CS691 – Chapter 6 of Matt Bishop
ISA 562 Information System Security

ISA 562 Information System Security
I NFORMATION S ECURITY : C ONFIDENTIALITY P OLICIES (C HAPTER 4) Dr. Shahriar Bijani Shahed University.

I NFORMATION S ECURITY : C ONFIDENTIALITY P OLICIES (C HAPTER 4) Dr. Shahriar Bijani Shahed University.
CMSC 414 Computer (and Network) Security Lecture 12 Jonathan Katz.

CMSC 414 Computer (and Network) Security Lecture 12 Jonathan Katz.
Slide #5-1 Chapter 5: Confidentiality Policies Overview –What is a confidentiality model Bell-LaPadula Model –General idea –Informal description of rules.

Slide #5-1 Chapter 5: Confidentiality Policies Overview –What is a confidentiality model Bell-LaPadula Model –General idea –Informal description of rules.
Access Control Intro, DAC and MAC System Security.

Access Control Intro, DAC and MAC System Security.
1 Confidentiality Policies CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 18, 2004.

1 Confidentiality Policies CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 18, 2004.
Confidentiality Policies  Overview  What is a confidentiality model  Bell-LaPadula Model  General idea  Informal description of rules  Formal description.

Confidentiality Policies  Overview  What is a confidentiality model  Bell-LaPadula Model  General idea  Informal description of rules  Formal description.
Chapter 4: Security Policies Overview The nature of policies What they cover Policy languages The nature of mechanisms Types Secure vs. precise Underlying.

Chapter 4: Security Policies Overview The nature of policies What they cover Policy languages The nature of mechanisms Types Secure vs. precise Underlying.
Chapter 6: Integrity Policies Overview Requirements Biba’s models Clark-Wilson model Introduction to Computer Security ©2004 Matt Bishop.

Chapter 6: Integrity Policies Overview Requirements Biba’s models Clark-Wilson model Introduction to Computer Security ©2004 Matt Bishop.
ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.

ITIS 3200: Introduction to Information Security and Privacy Dr. Weichao Wang.
June 1, 2004Computer Security: Art and Science ©2002-2004 Matt Bishop Slide #6-1 Chapter 6: Integrity Policies Overview Requirements Biba’s models Lipner’s.

June 1, 2004Computer Security: Art and Science © Matt Bishop Slide #6-1 Chapter 6: Integrity Policies Overview Requirements Biba’s models Lipner’s.
1 cs691 chow C. Edward Chow Confidentiality Policy CS691 – Chapter 5 of Matt Bishop.

1 cs691 chow C. Edward Chow Confidentiality Policy CS691 – Chapter 5 of Matt Bishop.
Courtesy of Professors Chris Clifton & Matt Bishop INFSCI 2935: Introduction of Computer Security1 September 18, 2003 Introduction to Computer Security.

Courtesy of Professors Chris Clifton & Matt Bishop INFSCI 2935: Introduction of Computer Security1 September 18, 2003 Introduction to Computer Security.
November 1, 2004Introduction to Computer Security ©2004 Matt Bishop Slide #5-1 Chapter 5: Confidentiality Policies Overview –What is a confidentiality.

November 1, 2004Introduction to Computer Security ©2004 Matt Bishop Slide #5-1 Chapter 5: Confidentiality Policies Overview –What is a confidentiality.
1 Integrity Policies CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 22, 2004.

1 Integrity Policies CSSE 490 Computer Security Mark Ardis, Rose-Hulman Institute March 22, 2004.
Chapter 6: Integrity Policies Overview Requirements Biba’s models Clark-Wilson model Introduction to Computer Security ©2004 Matt Bishop.

Chapter 6: Integrity Policies Overview Requirements Biba’s models Clark-Wilson model Introduction to Computer Security ©2004 Matt Bishop.
Sicurezza Informatica Prof. Stefano Bistarelli

Sicurezza Informatica Prof. Stefano Bistarelli

Similar presentations

Ads by Google