Outline for January 3, 2007

  1. Greetings and Felicitations!
    1. Go over class handouts
  2. Access control matrix and entities
    1. Subject, objects (includes subjects)
    2. State is (S, O, A) where A is access control matrix
  3. Transitions modify access control matrix entries; primitive operations
    1. enter r into A[s, o]
    2. delete r from A[s, o]
    3. create subject s (note that for all x, A[s′, x] = A[x, s′] = ∅)
    4. create object o (note that for all x, A[x, o′] = ∅)
    5. destroy subject s
    6. destroy object o
  4. Commands and examples
    1. Regular command: create·file
    2. Mono-operational command: make·owner
    3. Conditional command: grant·rights
    4. Biconditional command: grant·read·if·r·and·c
    5. Doing "or" of 2 conditions: grant·read·if·r·or·c
    6. General form
  5. Miscellaneous points
    1. Copy flag and right
    2. Own as a special right
    3. Principle of attenuation of privilege

Here is a PDF version of this document.