Which security model is based on the military classification of data and people with clearances?
Click on the arrows to vote for the correct answer
A. B. C. D.C.
The Bell-LaPadula model is a confidentiality model for information security based on the military classification of data, on people with clearances and data with a classification or sensitivity model.
The Biba, Clark-Wilson and Brewer-Nash models are concerned with integrity.
Source: HARE, Chris, Security Architecture and Models, Area 6 CISSP Open Study Guide, January 2002.
The security model based on the military classification of data and people with clearances is the Bell-LaPadula model (option C).
The Bell-LaPadula model is a mandatory access control (MAC) security model, which means that access decisions are based on the security clearance of the user and the sensitivity of the data they are trying to access. The model was developed in the early 1970s by David Bell and Len LaPadula for the United States Department of Defense to address the security requirements of multilevel secure computer systems.
The Bell-LaPadula model has two main principles:
The Simple Security Property: This principle states that a subject (such as a user or a process) can only access an object (such as a file or a resource) if the security level of the subject is equal to or greater than the security level of the object. In other words, a user with a higher security clearance can access information at a lower level, but not vice versa. This principle prevents unauthorized access to sensitive information.
The *-Property: This principle states that a subject can only modify an object if the security level of the object is equal to or lower than the security level of the subject. In other words, a user can only modify information at their clearance level or lower, to prevent data tampering and unauthorized modifications.
The Bell-LaPadula model also includes a set of rules for how information can flow between different security levels, called the Tranquility Property. These rules ensure that information flows only in authorized ways and prevent unauthorized information disclosure.
In summary, the Bell-LaPadula model is a security model based on military classification that uses mandatory access control to prevent unauthorized access and modifications to sensitive information. It includes the Simple Security Property and the *-Property, and the Tranquility Property for information flow control.