Outline for May 1, 2013

Reading: §7.4, 8.1–8.2, [WB04] (This is available in the Resources area of SmartSite; look in the folder “Handouts”)
Due: Homework #3, due May 10, 2013

  1. DRM
  2. Traducement
    1. Problem and Goals
    2. Definitions
    3. Rules
    4. Security for states and transitions
    5. Application
  3. Role-based Access Control (RBAC)
    1. Definition of role
    2. Partitioning as job function
    3. Containment
  4. Problem with instantiation of Bell-LaPadula Model
    1. Covert channel example: what is “writing”?
    2. Composition of lattices
    3. Principles of autonomy and security
  5. Deterministic noninterference
    1. Model of system
    2. Example
    3. Relationship of output to states
    4. Projections and purge functions
You can also obtain a PDF version of this. Version of April 29, 2013 at 7:44PM