Bell, D.E. and LaPadula, L.J., "Secure Computer Systems: A Refinement of the Mathematical Model", Mitre TR-2547, Vol 3, Mitre Corporation, Bedford, MA, April 1974  Home/Search   Document Not in Database   Summary   Related Articles   Check

....Security Models Trojan Horse attacks can be prevented by using mandatory security models. Whereas discretionary policies allow users to pass rights they possess to other users without constraints, mandatory models restrict how users can pass rights to other users [McL94] The Bell LaPadula model [Bell73a, Bell73b, Bell74, Bell76] is an extension of the access matrix model [CFMS95] It is based on the classification of system entities. In addition to the access matrix itself, a security level is associated with each system entities. A security level is composed of: 1. a hierarchical classification: element of the ....

Bell, D.E. and LaPadula, L.J., "Secure Computer Systems: A Refinement of the Mathematical Model", Mitre TR-2547, Vol 3, Mitre Corporation, Bedford, MA, April 1974

....and well defined security policy. At the higher criteria classes, the reference monitor concept [1] is an essential part of the system and the security policy is modeled. There are several security policy models that represent the desired behavior of a reference monitor. The Bell La Padula model [4 6] and its Multics interpretation [3] are commonly used, but not mandated. The computer security research and development that underpin the TCSEC began in the late 1960s and concentrated on secure operating systems. By the early 1970s initial worked examples had provided a substantial amount of ....

D. E. Bell, "Secure Computer Systems: A Refinement of the Mathematical Model," MTR 2547-III, (AD 780 528), The MITRE Corporation, Bedford, Massachusetts, December 1973.

....1 S 0 existed mutable S0 (mutable S0 (E) mutable S0 (E) induction hypothesis, mutable( is monotonic = mutable S0 (E) by definition The proof that read and readable are related follows easily from the definitions. 8 Related Work Several efforts have proposed models for information flow [Coh77, Den76, Bel73a, Bel73b, Bel74] and access rights leakage [Har76, Jon76] Karger asserts (incorrectly) Kar88] that capability systems cannot enforce either confinement or the lattice model of information flow. Feiertag [Fei77] considers the interactions between information flow and access rights, but in a highly restrictive ....

D. E. Bell. "Secure Computer Systems: A Refinement of the Mathematical Model." ESD-TR-73278, vol 3, ESD/AFSD, Hanscom AFB, Bedford, Mass., April 1974 (MTR 2547, vol. 3, MITRE Corp., Bedford, Mass).

....to reverse engineer the code. A second issue is the security model that will be supported. Carl Landwehr has written a highly recommended survey of security models that have been applied to operating systems, Lan81] Most programming language work has adopted models based upon military security [Bel73a, Bel74, Bel74]. In these models, a piece of information is given a classification level, as are users . The security system is designed to prevent relatively untrusted users from learning more classified information. Unfortunately, no model is perfect: there are some problems that are more suited for one model ....

D. E. Bell. "Secure Computer Systems: A Refinement of the Mathematical Model." ESD-TR-73-278, vol 3, ESD/AFSD, Hanscom AFB, Bedford, Mass., April 1974 (MTR 2547, vol. 3, MITRE Corp., Bedford, Mass).

....to modeling computer security. Volume two, Secure Computer Systems: A Mathematical Model [26] was produced at the same time as volume one. In 1974, some of the model was refined and extended in volume three of the series, entitled, Secure Computer Systems: A Refinement of the Mathematical Model [3]. Later in 1974, MITRE corporation produced a companion document entitled Secure Computer Systems: Mathematical Foundation and Model [5] In our opinion, the best general reference to BLP is entitled, Secure Computer System: Unified Exposition and Multics Interpretation written in 1976 [6] The ....

D.E. Bell. Secure computer systems: A refinement of the mathematical model. Technical Report ESD-TR-73-278, Volume III, Electronic Systems Division, Air Force Systems Command, Hanscom Air Force Base, Bedford, Massachusetts, April 1974. Available from the National Technical Information Service as document number: AD 780 528.

....and well defined security policy. At the higher criteria classes, the reference monitor concept [1] is an essential part of the system and the security policy is modeled. There are several security policy models that represent the desired behavior of a reference monitor. The Bell La Padula model [4 6] and its Multics interpretation [3] are commonly used, but not mandated. The computer security research and development that underpin the TCSEC began in the late 1960s and concentrated on secure operating systems. By the early 1970s initial worked examples had provided a substantial amount of ....

D. E. Bell, "Secure Computer Systems: A Refinement of the Mathematical Model," MTR 2547-III, (AD 780 528), The MITRE Corporation, Bedford, Massachusetts, December 1973.

....e.g. files and devices. A less frequently described part of the Bell LaPadula model is its concept of trusted subjects, i.e. subjects that are allowed to operate without the extra encumbrance of the property, because they are trusted never [to] mix information of different security levels [9]. More precisely, a trusted subject can have simultaneous read access to objects of classification x and write access to objects of classification y, even if the classification of y is less than the classification of x. The formal statement of the Bell LaPadula model places no constraints on the ....

Bell, D.E. Secure computer systems: a refinement of the mathematical model. MTR-2547, Vol. III, MITRE Corp., Bedford, MA, April, 1974, pp.30,31. Available as NTIS AD 780 528.

No context found.

D. E. Bell, "Secure Computer Systems: A Refinement of the Mathematical Model," MTR 2547-III, (AD 780 528), The MITRE Corporation, Bedford, Massachusetts, December 1973.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC