Lattice-Based Access Control Models

Lattice-Based Access Control Models (1993)

by Ravi S. Sandhu

Citations:

User correction supplied by mph

Datum	Value	Source
TITLE	Lattice-Based Access Control Models	user correction - Legacy Corrections
AUTHOR NAME	Ravi S. Sandhu	user correction
AUTHOR AFFIL	Center for Secure Information Systems; Department of Information and; Software Systems Engineering; George Mason University	user correction
AUTHOR ADDR	Fairfax, Virginia 22030	user correction
ABSTRACT	The objective of this article is to give a tutorial on lattice-based access control models for computer security. The paper begins with a review of Denning's axioms for information flow policies, which provide a theoretical foundation for these models. The structure of security labels in the military and government sectors, and the resulting lattice is discussed. This is followed by a review of the Bell-LaPadula model, which enforces information flow policies by means of its simple-security and *-properties. It is noted that information flow through covert channels is beyond the scope of such access controls. Variations of the Bell-LaPadula model are considered. The paper next discusses the Biba integrity model, examining its relationship to the Bell-LaPadula model. The paper then reviews the Chinese Wall policy, which arises in a segment of the commercial sector. It is shown how this policy can be enforced in a lattice framework.	user correction
YEAR	1993	user correction - Legacy Corrections
CITATIONS	13 found	ParsCit 1.0