Multilevel Security
Classification Key
: Core Security
Problem
How do you control access in an environment with sensitive data so as to prevent leakage of information?
Solution
Assign classification to users and data. Separate different institutional units into categories. Enforce confidentiality and integrity by adopting security models. For example, confidentiality can be enforced by the Bell La-Padula model and integrity can be enforced by Biba's model.
Known Uses
Pit-bull and HP’s Virtual Vault OS. DBMS like Informix, Oracle.
Related Patterns
Role Based Access Control
Source
Wiley Book
Tags
Access Control, Security Model
|