Lecture 2 Outline
Greetings and felicitations!
Access Control Matrix
Subjects, objects, and rights
Commands and conditions: create-file, various flavors of grant-right to show conditions and nested commands
Decidability of security
Notion of leakage in terms of ACM
Determining security of a generic system with generic rights and mono-operational commands is decidable
Determining security of a generic system with generic rights is undecidable (HRU result)
Meaning: can’t derive a generic algorithm; must look at (sets of) individual case
You can also obtain a PDF version of this.
Version of September 22, 2016 at 7:40PM