Which of the following is not one of the three goals of Integrity addressed by the Clark-Wilson model?
Click on the arrows to vote for the correct answer
A. B. C. D.A.
There is no need to prevent modification from authorized users.They are authorized and allowed to make the changes.On top of this, it is also NOT one of the goal of Integrity within Clark-Wilson.
As it turns out, the Biba model addresses only the first of the three integrity goals which is Prevention of the modification of information by unauthorized users.
Clark-Wilson addresses all three goals of integrity.
The ClarkWilson model improves on Biba by focusing on integrity at the transaction level and addressing three major goals of integrity in a commercial environment.
In addition to preventing changes by unauthorized subjects, Clark and Wilson realized that high-integrity systems would also have to prevent undesirable changes by authorized subjects and to ensure that the system continued to behave consistently.
It also recognized that it would need to ensure that there is constant mediation between every subject and every object if such integrity was going to be maintained.
Integrity is addressed through the following three goals: 1
Prevention of the modification of information by unauthorized users.
2
Prevention of the unauthorized or unintentional modification of information by authorized users.
3
Preservation of the internal and external consistency.
The following reference(s) were used for this question: Hernandez CISSP, Steven (2012-12-21)
Official (ISC)2 Guide to the CISSP CBK, Third Edition ((ISC)2 Press) (Kindle Locations 17689-17694)
Auerbach Publications.
Kindle Edition.
and KRUTZ, Ronald L.
& VINES, Russel.
D., The CISSP Prep Guide: Mastering the Ten Domains of Computer Security, 2001, John Wiley & Sons, Page 31.
The Clark-Wilson model is a security model that is designed to address integrity in computer systems. The model is based on three primary goals of integrity:
Option D, "Prevention of the modification of information by authorized users," is not one of the three primary goals of integrity addressed by the Clark-Wilson model. In fact, the Clark-Wilson model assumes that authorized users will modify information, and it seeks to ensure that those modifications are performed in a controlled and consistent manner.
Option A, "Prevention of the modification of information by unauthorized users," is one of the primary goals of integrity addressed by the Clark-Wilson model. The model seeks to prevent unauthorized users from modifying information by implementing access controls and authentication mechanisms.
Option B, "Prevention of the unauthorized or unintentional modification of information by authorized users," is also one of the primary goals of integrity addressed by the Clark-Wilson model. The model seeks to prevent authorized users from modifying information in an unauthorized or unintentional manner by implementing separation of duties and other controls.
Option C, "Preservation of the internal and external consistency," is the third primary goal of integrity addressed by the Clark-Wilson model. The model seeks to ensure that data remains internally and externally consistent by implementing transaction processing controls and other mechanisms.
In summary, the correct answer is D, "Prevention of the modification of information by authorized users," as it is not one of the three primary goals of integrity addressed by the Clark-Wilson model.