April 16, 2025 Outline

Reading: text,§5.1–5.2.2, A
Assignments: Project selection, due April 16; Homework #2, due April 28

Module 16 (text, §Appendix A)

  1. Lattices

Module 17 (text, §5.1–5.2.2)

  1. Bell-LaPadula Model: intuitive, security classifications only
    1. Level, categories, define clearance and classification
    2. Simple security condition (no reads up), *-property (no writes down), discretionary security property
    3. Basic Security Theorem: if it is secure and transformations follow these rules, it will remain secure

  2. Bell-LaPadula Model: intuitive, now add category sets
    1. Apply lattice
      1. Set of classes SC is a partially ordered set under relation dom with glb (greatest lower bound), lub (least upper bound) operators
      2. Note: dom is reflexive, transitive, antisymmetric
      3. Example: (A, C) dom (A′, C′) iff AA′ and CC′;
        lub(A, C), (A′, C′)) = (max(A,A′), CC′); and
        glb((A, C), (A′, C′)) = (min(A, A′), CC′)
    2. Simple security condition (no reads up), *-property (no writes down), discretionary security property
    3. Basic Security Theorem: if it is secure and transformations follow these rules, it will remain secure

  3. Maximum, current security level

  4. Example: Trusted Solaris
UC Davis sigil
Matt Bishop
Office: 2209 Watershed Sciences
Phone: +1 (530) 752-8060
Email: mabishop@ucdavis.edu
ECS 235B, Foundations of Computer and Information Security
Version of April 15, 2025 at 7:17PM

 You can also obtain a PDF version of this.

Valid HTML 4.01 Transitional Built with BBEdit Built on a Macintosh