[Cisspstudy] Bell-Lapadula?

Clement Dupuis clement.dupuis at cccure.com
Mon Sep 7 09:49:48 EDT 2009 

There is NO best answer.

It is a bad questions

Take care

Clement

Clément Dupuis, CD
CISSP, GCFW, GCIA, Security+, CEH, ECSA, LPT, CCSA, CCSE, MBNS, MBIS, MBHS,
 ACE
----------------------------------------------------------------------------------------------
In real life:
Senior Security Specialist and Instructor
Security University
>>  Call me to get the best CISSP training  <<
----------------------------------------------------------------------------------------------
In Cyberspace:
President/Security Evangelist/Chief Learning Officer (CLO)
The CCCure Family of Portals
----------------------------------------------------------------------------------------------
Business:  407 479 3903
Fax:          407 264 8396

Maintainer of :
The CISSP and SSCP Open Study Guides Web Site
http://www.cccure.org

The Professional Security Testers Warehouse
http://www.professionalsecuritytesters.org

Knowledge sharing and giving back to the community


On Mon, Sep 7, 2009 at 09:44, gerritsjs <gerritsjs at gmail.com> wrote:

>  So what is the best answer, or there are many?
>
>
>  ------------------------------
>
> *From:* cisspstudy-bounces at cccure.org [mailto:
> cisspstudy-bounces at cccure.org] *On Behalf Of *Clement Dupuis
> *Sent:* Monday, September 07, 2009 3:26 AM
> *To:* The CISSP Study Mailing list
> *Subject:* Re: [Cisspstudy] Bell-Lapadula?
>
>
>
> With info this time:
>
>
> A system state is defined to be "secure" if the only permitted access modes
> of subjects to objects are in accordance with a security policy<http://en.wikipedia.org/wiki/Security_policy>.
> To determine whether a specific access mode is allowed, the clearance of a
> subject is compared to the classification of the object (more precisely, to
> the combination of classification and set of compartments, making up the *security
> level*) to determine if the subject is authorized for the specific access
> mode. The clearance/classification scheme is expressed in terms of a
> lattice. The model defines two mandatory access control<http://en.wikipedia.org/wiki/Mandatory_access_control>(MAC) rules and one discretionary
> access control <http://en.wikipedia.org/wiki/Discretionary_access_control>(DAC) rule with three security properties:
>
>
> Take care
>
> Clement
>
>
>
> _______________________________________________
> cisspstudy mailing list
> cisspstudy at cccure.org
> http://cccure.org/mailman/listinfo/cisspstudy_cccure.org
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20090907/b6888594/attachment-0001.html>

More information about the cisspstudy mailing list