Network Security - network security models—Bell-LaPadula, Biba, and Clark-Wilson:
1. Bell-LaPadula Model (BLP)
Purpose:
Key Concepts:
-
Security Levels:
-
Rules:
Strength:
Limitation:
Use Case:
2. Biba Model
Purpose:
-
Focuses on integrity rather than confidentiality.
-
Ensures that data is not improperly modified, either intentionally or accidentally.
Key Concepts:
-
Integrity Levels:
-
Rules:
Strength:
Limitation:
Use Case:
3. Clark-Wilson Model
Purpose:
Key Concepts:
-
Well-formed Transactions:
-
Data can only be modified using authorized programs, called Transformation Procedures (TPs).
-
Prevents unauthorized changes to data.
-
Separation of Duties:
-
Different users have different roles to prevent fraud or errors.
-
Example: One person can create a transaction, another must approve it.
-
Constrained Data Items (CDIs):
-
Certification & Enforcement Rules:
Strength:
Use Case:
-
Banking, payroll, e-commerce, and enterprise systems where data integrity and process control are critical.