[cap-talk] Mandatory Access Control (was: What's "DiscretionarySecurity")
Karp, Alan H
alan.karp at hp.com
Wed Jan 3 15:27:19 CST 2007
Shap wrote:
> > >
> > Compartments.
>
> I don't know that I believe it,
Alice has Secret level access to the submarine project. Bob has Secret
level access to the bomber project. Never the twain shall meet. It's a
horizontal cut in the lattice.
>
> Therefore, MLS is in fact the *only* mandatory policy, modulo the
> possibility that there might be more levels and labels in other
> lattice-governed policies.
>
Alice is has access to the project for client Y. Bob has access to the
project for client Z. Never the twain shall meet. No levels involved
anywhere.
_________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
https://ecardfile.com/id/Alan_Karp
http://www.hpl.hp.com/personal/Alan_Karp/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Karp, Alan H.vcf
Type: text/x-vcard
Size: 423 bytes
Desc: Karp, Alan H.vcf
Url : http://www.eros-os.org/pipermail/cap-talk/attachments/20070103/79e06c6b/attachment.vcf
More information about the cap-talk
mailing list