Lattices for Security Policies

Abstract

This report lays the foundation for a new model and approach for secure information flow. The model is driven by lattice based information flow policy, which describes the permitted dissemination of information in the system. System entities are allowed to handle different classes of information from the flow policy, and information is permitted to flow between entities so long as they do not violate the flow policy. With this conceptually simple notion of security we can describe many interesting security policies, for example, traditional multi-level policies, aggregation policies, and chinese walls. Details are given on how secure systems based on the model can be implemented in practice. We also examine how other types of security policies such as integrity and separation of duty can be defined in terms of lattice based policies. (sdw)

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Apr 01, 1990
Accession Number
ADA225638

Entities

People

  • Simon N. Foley

Organizations

  • Royal Signals and Radar Establishment

Tags

Communities of Interest

  • Biomedical
  • C4I
  • Cyber
  • Materials and Manufacturing Processes

DTIC Thesaurus Topics

  • Abstracts
  • Alphabets
  • Classification
  • Clearances
  • Computer Access Control
  • Computer Science
  • Databases
  • Directories
  • Equations
  • Flow
  • Hospitals
  • Information Science
  • Information Systems
  • Language
  • Latitude
  • Longitude
  • Reasoning

Fields of Study

  • Computer science

Readers

  • Computational Modeling and Simulation
  • Cybersecurity.
  • Mathematical Modeling and Probability Theory.