1. Home
  2. Lainnya

INFORMATION FLOW SECRECY MODELS 63

66 CHAPTER 5. VERIFIABLE SECURITY GOALS Top- secret Unclass -ified Confi- dential Secret Bell-LaPadula Policy Biba Policy System Low User Appl High Figure 5.4: For a system that enforces both secrecy and integrity goals, Biba and Bell-LaPadula can be jointly applied. Subjects and objects will be assigned both Biba integrity classes and Bell-LaPadula secrecy classes from the set as shown. Suppose that an object is a top-secret, user object i.e., secrecy class, then integrity class. Only subjects that are authorized to read both top-secret objects according to the Bell-LaPadula policy and user objects according to the Biba policy are permitted to read the object. For example, neither secret, low nor top-secret, appl are allowed to read this object because both the Biba and Bell-LaPadula requirements are not satisfied for these subjects. A subject must be able to both read the object in Bell-LaPadula i.e., be top-secret and read the object in Biba i.e., be low or user. As for reading, a subject’s integrity and secrecy classes must individually permit the subject to write to the object for writes to be authorized. Lipner defined specific integrity and secrecy levels and categories could be chosen with the aim of constructing a useful composite model for commercial systems [ 190 ]. Lipner chose two secrecy levels, audit manager and system low, where audit manager is more secret i.e., logs cannot be read once they are written. Also, there are three secrecy categories, production, development, system development. Production is used for production code and data, and the development categories separate system and user program development. In modern systems, we probably need at least one more secrecy level or category for untrusted programs e.g., to prevent them from downloading the commercial entity’s data. For integrity, the lattice has three levels, system programs, operational, and system low. The first two levels separate system code from user applications. There are still two integrity categories,

5.3. INFORMATION FLOW INTEGRITY MODELS 67

Dokumen yang terkait

Pengaruh Hutang, Operating Ratio, Earning Power of Total Invesment, Rate of Return for Owners , Working Capital, Quick Ratio terhadap Dividen Tunai pada Perusahaan Perkebunan yang Terdaftar di BEI Periode 2009-2013

3 49 100

Pengaruh Liquidity Ratio (Quick Ratio), Profitability Ratio (ROA dan ROE) Terhadap Dividend Payout Ratio pada Perusahaan Perbankan yang Terdaftar Di Bursa Efek Indonesia

4 64 101

Sikap Dan Perilaku Room Attendant Dalam Melaksanakan Standard Operating Procedure Bagian Kamar Di J.W.Marriott Hotel Medan

21 300 74

Pengaruh Likuiditas, Laba, Kebijakan Hutang, dan Operating Leverage Terhadap Price To Book Value pada Perusahaan Real Estate dan Property yang Terdaftar di Bursa Efek Indonesia (BEI)

1 43 77

Pengaruh Cash Dividend Coverage, Operating Cashflow Per Share, Return On Equity, Return On Assets, Total Assets Turnover, dan Earning Per Share terhadap Harga Saham pada Perusahaan Manufaktur yang Terdaftar di BEI

1 39 84

Analisis pengaruh Gross Profit Margin (GPM), Operating Profit Margin (OPM), Net Profit Margin (NPM), dan Return On Asset (ROA) terhadap harga saham: studi empiris pada perusahaan manufaktur sektor industri barang konsumsi Tahun 2008 -2012.

3 51 124

Analisis Dan Perancangan Site-To-Site Virtual Private Network (VPN) Berbasis IP Security Menggunakan Mikrotik Router Operating System

4 22 144

Pengaruh Operating Leverage, Financial Leverage, dan Compound Leverage Terhadap Risiko Sistematik

0 8 113

PENGARUH OPERATING ASSETS TURNOVER DAN OPERATING PROFIT MARGIN TERHADAP EARNING POWER.

2 6 48

Operating a forklift

0 0 1